Annotation of www/errata24.html, Revision 1.25
1.24 naddy 1: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
1.1 deraadt 2: <html>
3: <head>
1.7 deraadt 4: <title>OpenBSD 2.4 errata</title>
1.24 naddy 5: <link rev=made href="mailto:www@openbsd.org">
1.1 deraadt 6: <meta name="resource-type" content="document">
7: <meta name="description" content="the OpenBSD CD errata page">
8: <meta name="keywords" content="openbsd,cd,errata">
9: <meta name="distribution" content="global">
1.14 jufi 10: <meta name="copyright" content="This document copyright 1997-2001 by OpenBSD.">
1.1 deraadt 11: </head>
12:
13: <BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E">
14:
1.18 jsyn 15: <a href="index.html"><img alt="[OpenBSD]" height="30" width="141" src="images/smalltitle.gif" border="0"></a>
1.24 naddy 16: <h2><font color="#0000e0">
1.1 deraadt 17: This is the OpenBSD 2.4 release errata & patch list:
18:
19: </font></h2>
20:
21: <hr>
1.8 jason 22: <a href=stable.html>For OpenBSD patch branch information, please refer here.</a><br>
1.20 deraadt 23: <br>
1.21 deraadt 24: For errata on a certain release, click below:<br>
1.20 deraadt 25: <a href="errata21.html">2.1</a>,
26: <a href="errata22.html">2.2</a>,
27: <a href="errata23.html">2.3</a>,
28: <a href="errata25.html">2.5</a>,
29: <a href="errata26.html">2.6</a>,
30: <a href="errata27.html">2.7</a>,
31: <a href="errata28.html">2.8</a>,
32: <a href="errata29.html">2.9</a>,
33: <a href="errata30.html">3.0</a>,
34: <a href="errata31.html">3.1</a>,
1.25 ! deraadt 35: <a href="errata32.html">3.2</a>,
! 36: <a href="errata.html">3.3</a>.
1.20 deraadt 37: <br>
1.1 deraadt 38: <hr>
39:
1.24 naddy 40: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4.tar.gz">
1.1 deraadt 41: You can also fetch a tar.gz file containing all the following patches</a>.
42: This file is updated once a day.
43:
1.9 ericj 44: <p>
1.22 deraadt 45: For more detailed information on how to install patches to OpenBSD, please
1.9 ericj 46: consult the <a href="./faq/faq10.html#10.14">OpenBSD FAQ</a>.
47:
1.1 deraadt 48: <hr>
1.11 jufi 49: <ul>
1.5 deraadt 50: <dl>
1.1 deraadt 51: <a name=all></a>
1.24 naddy 52: <li><h3><font color="#e00000">All architectures</font></h3>
1.1 deraadt 53: <ul>
1.3 millert 54: <a name=bmap></a>
1.24 naddy 55: <li><font color="#009000"><strong>RELIABILITY FIX</strong></font><br>
1.3 millert 56: A local user can crash the system by reading a file larger than 64meg
57: from an ext2fs partition.
1.24 naddy 58: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/bmap.patch">
1.3 millert 59: A source code patch exists which remedies this problem.</a>
60: <p>
1.2 deraadt 61: <a name=lnpanic></a>
1.24 naddy 62: <li><font color="#009000"><strong>RELIABILITY FIX</strong></font><br>
1.2 deraadt 63: A local user can crash the system because of a bug in the vfs layer.
1.24 naddy 64: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/lnpanic.patch">
1.2 deraadt 65: A source code patch exists which remedies this problem.</a>
66: <p>
1.1 deraadt 67: <a name=poll></a>
1.24 naddy 68: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 69: A machine crash is possible when playing with poll(2).
1.24 naddy 70: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/poll.patch">
1.1 deraadt 71: A source code patch exists which remedies this problem.</a>
72: <p>
73: <a name=nlink></a>
1.24 naddy 74: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 75: A machine crash is possible when playing with link(2) on FFS.
1.24 naddy 76: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/nlink.patch">
1.1 deraadt 77: A source code patch exists which remedies this problem. This
78: is version four of the patch.</a>
79: <p>
80: <a name=ping></a>
1.24 naddy 81: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 82: A buffer overflow existed in ping(8), which may have a security issue.
1.24 naddy 83: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/ping.patch">
1.1 deraadt 84: A source code patch exists which remedies this problem.</a>
85: <p>
86: <a name=ipqrace></a>
1.24 naddy 87: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 88: A race condition in IP ipq handling could permit a remote crash.
1.24 naddy 89: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/ipqrace.patch">
1.1 deraadt 90: A source code patch exists which remedies this problem.</a>
1.24 naddy 91: It must be installed after <a href="errata24.html#maxqueue">the maxqueue patch</a>.
92: and <a href="errata24.html#tcpfix">the tcp decoding patch</a>.
1.1 deraadt 93: <p>
94: <a name=accept></a>
1.24 naddy 95: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 96: A race condition existed between accept(2) and select(2) which could
97: permit an attacker to hang sockets from remote.
1.24 naddy 98: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/accept.patch">
1.1 deraadt 99: A source code patch exists which remedies this problem.</a>
100: <p>
101: <a name=maxqueue></a>
1.24 naddy 102: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 103: IP fragment assembly can bog the machine excessively and cause problems.
1.24 naddy 104: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/maxqueue.patch">
1.1 deraadt 105: A source code patch exists which remedies this problem.</a>
106: <p>
107: <a name=uio></a>
1.24 naddy 108: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 109: The readv(2) and writev(2) system calls would not accept a <em>struct iovec</em>
110: with an <strong>iov_len</strong> of 0. This causes a db test in perl to fail.
1.24 naddy 111: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/uio.patch">
1.1 deraadt 112: A source code patch exists which remedies this problem.</a>
113: <p>
114: <a name=rst></a>
1.24 naddy 115: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 116: TCP/IP RST handling was too sloppy.
1.24 naddy 117: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/rst.patch">
1.1 deraadt 118: A source code patch exists which remedies this problem.</a>
119: <p>
120: <a name=kvm_mkdb></a>
1.24 naddy 121: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 122: During bootup, kvm_mkdb may exit with the error "kvm_mkdb: cannot allocate
123: memory".
1.24 naddy 124: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/kvm_mkdb.patch">
1.1 deraadt 125: A source code patch exists which remedies this problem.</a>
126: <p>
127: <a name=nfs3_solaris7></a>
1.24 naddy 128: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 129: A problem with writing to NFS version 3 mounted filesystems from Solaris 7
130: hosts exists. Attempts to create files will result in a error such as
131: "Inappropriate file type or format".
1.24 naddy 132: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/nfs3_solaris7.patch">
1.1 deraadt 133: A source code patch exists which remedies this problem.</a>
134: <p>
135: <a name=nfs3></a>
1.24 naddy 136: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 137: A problem with NFS version 3 mounts on big endian machines (m68k, sparc
138: and powerpc) exists when mounting filesystems larger than 2gig. You
139: can see evidence of the bug by running df(1) and checking for negative
140: partition sizes.
1.24 naddy 141: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/nfs3.patch">
1.1 deraadt 142: A source code patch exists which remedies this problem.</a>
143: <p>
144: <a name=termcap></a>
1.24 naddy 145: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 146: A security problem exists in the curses and ocurses libraries that affect
147: setuid programs linked with -lcurses or -locurses.
1.24 naddy 148: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/termcap.patch">
1.1 deraadt 149: A source code patch exists which remedies this problem.</a>
150: <br>
151: Precompiled versions of libcurses and libocurses exist for the
1.24 naddy 152: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/i386/curses.tar.gz">i386</a>
1.1 deraadt 153: platform. Unpack it in /usr/lib.
154: <p>
155: <a name=terminfo></a>
1.24 naddy 156: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 157: A workaround for an xterm problem that causes <strong>vi</strong> to not
158: restore the correct cursor position on exit.
1.24 naddy 159: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/terminfo.src.patch">
1.1 deraadt 160: A source code patch exists which remedies this problem.</a>
161: <br>
162: Alternately, you can also download a pre-compiled terminfo file to be
163: installed as <strong>/usr/share/misc/terminfo.db</strong>. For i386,
164: alpha and mips, use the
1.24 naddy 165: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/terminfo.db-LE.tar.gz">
1.1 deraadt 166: little endian</a> version. For sparc, m68k and powerpc, use the
1.24 naddy 167: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/terminfo.db-BE.tar.gz">
1.1 deraadt 168: big endian</a> version.
169: <p>
170: <a name=userdir></a>
1.24 naddy 171: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 172: <strong>userdir</strong> support was accidentally left out of httpd(8).
1.24 naddy 173: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/userdir.patch">
1.1 deraadt 174: A source code patch exists which remedies this problem.</a>
175: <p>
176: <a name=bootpd></a>
1.24 naddy 177: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 178: A remotely exploitable problem exists in bootpd(8). bootpd is disabled
179: by default, but some people may actually be using it.
1.24 naddy 180: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/bootpd.patch">
1.1 deraadt 181: A source code patch exists which remedies this problem</a>, this is the
182: second version of the patch.
183: <p>
184: <a name=tcpfix></a>
1.24 naddy 185: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 186: A remote machine lockup problem exists in the TCP decoding code.
1.24 naddy 187: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/tcpfix.patch">
1.1 deraadt 188: A source code patch exists which remedies this problem.</a>
189: <p>
190: </ul>
191: <a name=i386></a>
1.24 naddy 192: <li><h3><font color="#e00000">i386</font></h3>
1.1 deraadt 193: <ul>
194: <a name=tss></a>
1.24 naddy 195: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 196: This is another fix for a kernel crash caused by the
197: <strong>crashme</strong> program.
1.24 naddy 198: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/i386/tss.patch">
1.1 deraadt 199: A source code patch exists which remedies this problem.</a><br>
200: <p>
201: <a name=bootargv></a>
1.24 naddy 202: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 203: The kernel was using a fixed and hard-coded location for the arguments
204: vector passed from the <strong>/boot</strong> loader. This prevented
1.11 jufi 205: <strong>/boot</strong> from placing the boot arguments vector at any
1.1 deraadt 206: other location, causing a kernel crash early in the autoconfiguration
207: stage. In 2.5, the bootblocks will be modified to use a new location.
208: Hence, if you wish old kernels to boot on a new bootblock, those
209: kernels will only work if they were linked with this patch.
1.24 naddy 210: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/i386/bootargv.patch">
1.1 deraadt 211: A source code patch exists which remedies this problem.</a><br>
212: <p>
213: <a name=trctrap></a>
1.24 naddy 214: <li><font color="#009000"><strong>SECURITY FIX</strong></font><br>
1.1 deraadt 215: i386 trace-trap handling when DDB was configured could cause a system
216: crash.
1.24 naddy 217: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/i386/trctrap.patch">
1.1 deraadt 218: A source code patch exists which remedies this problem.</a><br>
219: <p>
220: <a name=installboot></a>
1.24 naddy 221: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.13 pvalchev 222: i386 installboot had a sign extension bug which prevented proper bootblock
1.1 deraadt 223: initialization when the root filesystem was placed beyond 4GB.
1.24 naddy 224: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/i386/installboot.patch">
1.1 deraadt 225: A source code patch exists which remedies this problem.</a><br>
226: Unfortunately, updated 2.4 install floppies are not available. Just ensure
227: that your root filesystem is below 4GB, for now.
228: <p>
229: </ul>
230: <p>
231: <a name=mac68k></a>
1.24 naddy 232: <li><h3><font color="#e00000">mac68k</font></h3>
1.1 deraadt 233: <ul>
234: <p>
235: <li>No problems identified yet.
236: </ul>
237: <p>
238: <a name=sparc></a>
1.24 naddy 239: <li><h3><font color="#e00000">sparc</font></h3>
1.1 deraadt 240: <ul>
241: <a name=hme></a>
1.24 naddy 242: <li><font color="#009000"><strong>DRIVER FIX</strong></font><br>
1.23 deraadt 243: The sparc hme(4) and be(4) drivers work poorly on some types of SS-20
1.1 deraadt 244: machines. This is because those machines lie, saying they support 64-bit DMA
245: bursting. No sun4m machines support that.
1.24 naddy 246: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/sparc/hme.patch">
1.1 deraadt 247: A source code patch exists which remedies this problem.</a>
248: <p>
249: <a name=le></a>
1.24 naddy 250: <li><font color="#009000"><strong>DRIVER FIX</strong></font><br>
1.1 deraadt 251: The sparc le(4) driver does media changes incorrectly on one type of
252: sbus le(4) card.
1.24 naddy 253: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/sparc/le.patch">
1.1 deraadt 254: A source code patch exists which remedies this problem.</a>
255: <p>
256: </ul>
257: <a name=amiga></a>
1.24 naddy 258: <li><h3><font color="#e00000">amiga</font></h3>
1.1 deraadt 259: <ul>
260: <li>No problems identified yet.
261: </ul>
262: <p>
263: <a name=pmax></a>
1.24 naddy 264: <li><h3><font color="#e00000">pmax</font></h3>
1.1 deraadt 265: <ul>
266: <li>No problems identified yet.
267: </ul>
268: <p>
269: <a name=arc></a>
1.24 naddy 270: <li><h3><font color="#e00000">arc</font></h3>
1.1 deraadt 271: <ul>
272: <li>No problems identified yet.
273: </ul>
274: <p>
275: <a name=alpha></a>
1.24 naddy 276: <li><h3><font color="#e00000">alpha</font></h3>
1.1 deraadt 277: <ul>
278: <li>No problems identified yet.
279: </ul>
280: <p>
281: <a name=hp300></a>
1.24 naddy 282: <li><h3><font color="#e00000">hp300</font></h3>
1.1 deraadt 283: <ul>
284: <a name=hp300X></a>
1.24 naddy 285: <li><font color="#009000"><strong>FUNCTIONALITY FIX</strong></font><br>
1.1 deraadt 286: The Xhp as shipped does not have the execute permissions set. The fix is
287: 'chmod 755 /usr/X11R6/bin/Xhp' if you have installed X.
288: <p>
289: </ul>
290: <p>
291: <a name=mvme68k></a>
1.24 naddy 292: <li><h3><font color="#e00000">mvme68k</font></h3>
1.1 deraadt 293: <ul>
294: <li>No problems identified yet.
295: </ul>
296: <p>
297: <a name=powerpc></a>
1.24 naddy 298: <li><h3><font color="#e00000">powerpc</font></h3>
1.1 deraadt 299: <ul>
300: <li>No problems identified yet.
301: </ul>
302: <p>
303:
304:
305: <p>
1.5 deraadt 306: </dl>
1.11 jufi 307: </ul>
1.1 deraadt 308: <br>
309:
310: <hr>
1.8 jason 311: <a href=stable.html>For OpenBSD patch branch information, please refer here.</a><br>
1.20 deraadt 312: <br>
1.21 deraadt 313: For errata on a certain release, click below:<br>
1.20 deraadt 314: <a href="errata21.html">2.1</a>,
315: <a href="errata22.html">2.2</a>,
316: <a href="errata23.html">2.3</a>,
317: <a href="errata25.html">2.5</a>,
318: <a href="errata26.html">2.6</a>,
319: <a href="errata27.html">2.7</a>,
320: <a href="errata28.html">2.8</a>,
321: <a href="errata29.html">2.9</a>,
322: <a href="errata30.html">3.0</a>,
323: <a href="errata31.html">3.1</a>,
1.25 ! deraadt 324: <a href="errata32.html">3.2</a>,
! 325: <a href="errata.html">3.3</a>.
1.20 deraadt 326: <br>
1.7 deraadt 327:
1.1 deraadt 328: <hr>
1.4 deraadt 329: <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
1.24 naddy 330: <a href="mailto:www@openbsd.org">www@openbsd.org</a>
1.25 ! deraadt 331: <br><small>$OpenBSD: errata24.html,v 1.24 2003/03/06 21:44:07 naddy Exp $</small>
1.1 deraadt 332:
333: </body>
334: </html>