www/errata22.html - diff

Return to errata22.html CVS log

Up to [local] / www

Diff for /www/errata22.html between version 1.95 and 1.96

version 1.95, 2019/05/27 22:55:19

version 1.96, 2019/05/28 16:32:41

Line 84

<hr>

<ul>

SECURITY FIX

001: SECURITY FIX

All architectures

If IPSEC communication is attempted by starting photurisd(8) (which is

disabled by default), a system crash may be evoked from remote if

Line 93

Line 94

A source code patch exists which remedies this problem.</a>

SECURITY FIX

002: SECURITY FIX

All architectures

As stated in CERT advisory VB-98.04, there are buffer

overrun problems in xterm related to the input-Method,

Line 109

Line 111

We provide a version of this patch file specifically for the OpenBSD 2.2 tree</a>.

SECURITY FIX

003: SECURITY FIX

All architectures

An exploitable buffer mismanagement exists in a subroutine used by

lprm and lpd. The problem is exploitable by users on a particular

Line 119

Line 122

A patch is available which corrects this behaviour</a>.

SECURITY FIX

004: SECURITY FIX

All architectures

A DNS-based vulnerability exists when uucpd is used. By default uucpd

is not enabled in the OpenBSD releases, but some sites may have enabled it.

A patch is available which corrects this behaviour</a>.

SECURITY FIX

005: SECURITY FIX

All architectures

A vulnerability exists when (and only when) /etc/named.conf has the

fake-iquery option enabled.

A patch is available which corrects this behaviour</a>.

SECURITY FIX

006: SECURITY FIX

All architectures

A vulnerability exists in ping(8); if the -R option is used to record

routes, an attacker can spoof a reply packet that will overflow inside

Line 145

Line 151

A patch is available which corrects this behaviour</a>.

SECURITY FIX   All architectures

007: SECURITY FIX   All architectures

If the sysctl variable net.inet.ip.forwarding is

enabled (value 1), but the variable net.inet.ip.sourceroute

is disabled (value 0), the kernel will block source routed packets from

Line 157

Line 164

A kernel patch is provided</a>.

SECURITY FIX

008: SECURITY FIX

All architectures

A combination localhost+remote host security problem exists if a

local user running a setuid binary causes a non-existent root .rhosts

Line 190

Line 198

The problem with the ruserok() function appears to also exist in

ssh 1.2.21 and previous (the ssh people have been alerted).

SECURITY FIX   All architectures

009: SECURITY FIX   All architectures

A bug in the vm system permits a file descriptor opened read-only on a

device, to later on be mmap(2)'d read-write, and then modified. This

does not result in a security hole by itself, but it does violate the

Line 202

Line 211

A kernel patch is available which corrects this behaviour (this is

revision 3 of this patch)</a>.

<li>BUILD PROCESS FIX

<li>010: BUILD PROCESS FIX

All architectures

Building an object tree from a read-only source tree (such as off a CDROM)

may fail under certain circumstances (e.g. when creating a symlink on sparc

Line 212

Line 221

A replacement source file exists</a>.

SECURITY FIX

011: SECURITY FIX

All architectures

If a line in /etc/exports which contains hostnames results in an empty

list because none of the supplied hostnames is known, mountd(8) will

Line 221

Line 231

A patch is available which corrects this behaviour</a>.

<li>RELIABILITY FIX

<li>012: RELIABILITY FIX

All architectures

Setting the MSG_EOR flag on a tcp packet in the send(2) family of

system calls could cause a kernel panic.

A patch</a> to return EINVAL in this case is available.

RELIABILITY FIX

013: RELIABILITY FIX

The Intel P5 F00F bug was discovered after the CDRs had already been

sent to the manufacturer. This problem permits any user who has an account

to lock your machine up using a 4-line program. The problem only affects

Line 238

Line 249

A kernel source-code patch is available</a>.

<li>FUNCTIONALITY FIX

<li>014: FUNCTIONALITY FIX

Some Linux binaries will execute in SVR4 emulation mode, which is

definitely a problem for people who need Linux emulation to work correctly.

To solve this mis-identification problem,

a patch file is provided</a>.

<li>RELIABILITY FIX

<li>015: RELIABILITY FIX

APM can crash on machines without it.

A kernel source-code patch is available</a>.

<li>INSTALLATION PROCESS FLAW

<li>016: INSTALLATION PROCESS FLAW

A few people are running into this problem, particularly if they had some

other *BSD operating system on their machine before trying OpenBSD: if after

installation onto an IDE-based machine, the kernel fails to mount the root

Line 260

Line 271

To repair this, use the floppy to run "disklabel -E wd0", then using the

"edit" command ensure the type field is set to "ST506".

<li>NEW SOFTWARE

<li>017: NEW SOFTWARE

Unfortunately, X11 binaries for the mac68k did not manage to make it onto the

CDROM. However, X11 for the mac68k is immediately available from

Line 268

Line 279

be sure to read the <a href="https://ftp.openbsd.org/pub/OpenBSD/2.2/mac68k/X11/README.X11">README file</a> also in that directory for instructions on installing

and setting up X.

<li>INSTALLATION PROCESS FLAW

<li>018: INSTALLATION PROCESS FLAW

As shipped on the CDROM, both the

generic kernel</a>

Line 290

Line 301

mini-shell to "cpin" the kernel. Alternately, you could install the kernel

with the Installer and use the mini-shell to move the binary from <code>/usr/src/...</code> to <code>/bsd</code>.

<li>RELIABILITY FIX

<li>019: RELIABILITY FIX

Older 4/xxx systems (particularly the 4/300's) cannot boot

with the 2.2 kernel due to bugs in the scsi device driver.

Line 300

Line 311

<a href="https://ftp.OpenBSD.org/pub/OpenBSD/patches/2.2/sparc/bsd.scsi3">bsd.scsi3</a>,

and a replacement for bsd.rd is coming soon.

RELIABILITY FIX

020: RELIABILITY FIX

SPARCstation 4 and 5 (Microsparc 2) users may see kernel panics when

using a custom kernel configured for option sun4m only.

A workaround (kernel source patch) is available</a>. Apply the patch and

then re-build your kernel.

<li>FUNCTIONALITY FIX

<li>021: FUNCTIONALITY FIX

Missing Xamiga manual pages. Get

this package</a> and execute, as root:

# pkg_add Xamiga-manual.tgz

The MD5 checksum of this package is:

MD5 (Xamiga-manual.tgz) = 2362a7857264b9d17f65cca258b42031

MD5 (Xamiga-manual.tgz) = 2362a7857264b9d17f65cca258b42031

<li>FUNCTIONALITY FIX

<li>022: FUNCTIONALITY FIX

The Ariadne ethernet support was broken, there will be both binary and

source level fixes available shortly. If you are in a hurry mail

<a href="mailto:niklas@openbsd.org">Niklas</a> for a test kernel.

<li>FUNCTIONALITY FIX

<li>023: FUNCTIONALITY FIX

There is a Year-1998 problem in the time-setting code (which causes the

date and time to be set incorrectly after a reboot in 1998).

Line 330

Line 343

<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/2.2/pmax/bsd">bsd</a>,

<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/2.2/pmax/bsd.rz0">bsd.rz0</a>.

<li>FUNCTIONALITY FIX

<li>024: FUNCTIONALITY FIX

X11 support for the 3min and 3maxplus machines was broken

due to a kernel bug.

A source code patch is available</a>.

SECURITY FIX

025: SECURITY FIX

A security problem in the shared library linker ld.so

requires that you replace it with a new binary. The following binary

will work on both pmax and arc machines.

The replacement binary is here</a>.

<li>SECURITY FIX

<li>026: SECURITY FIX

A security problem in the shared library linker ld.so requires

that you replace it with a new binary. The following binary

will work on both pmax and arc machines.

The replacement binary is here</a>.

<li>MISSING FUNCTIONALITY

<li>027: MISSING FUNCTIONALITY

Network Address Translation and other parts of IP Filtering do not work

on the alpha. This will be fixed in the 2.3 release, and perhaps earlier

in a snapshot. There is no patch for 2.2.