version 1.62, 2013/10/26 15:21:13 |
version 1.63, 2014/02/27 17:26:45 |
|
|
<a href="errata51.html">5.1</a>, |
<a href="errata51.html">5.1</a>, |
<a href="errata52.html">5.2</a>, |
<a href="errata52.html">5.2</a>, |
<a href="errata53.html">5.3</a>, |
<a href="errata53.html">5.3</a>, |
<a href="errata54.html">5.4</a>. |
<a href="errata54.html">5.4</a>, |
|
<a href="errata55.html">5.5</a>. |
<br> |
<br> |
<hr> |
<hr> |
|
|
|
|
<li><a name="pkg"></a> |
<li><a name="pkg"></a> |
<font color="#009000"><strong>011: RELIABILITY FIX: July 15, 2001</strong></font> |
<font color="#009000"><strong>011: RELIABILITY FIX: July 15, 2001</strong></font> |
<br> |
<br> |
The |
The |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=packages&sektion=7&format=html">packages(7)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=packages&sektion=7&format=html">packages(7)</a> |
subsystem incorrectly accepts some package dependencies as okay (see |
subsystem incorrectly accepts some package dependencies as okay (see |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=packages-specs&sektion=7&format=html">packages-specs(7)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=packages-specs&sektion=7&format=html">packages-specs(7)</a> |
for details). |
for details). |
<br> |
<br> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/011_pkg.patch">A source code patch exists which remedies the problem</a>, |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/011_pkg.patch">A source code patch exists which remedies the problem</a>, |
by forcing <code>/usr/sbin/pkg</code> to be more careful in checking |
by forcing <code>/usr/sbin/pkg</code> to be more careful in checking |
version numbers. |
version numbers. |
<p> |
<p> |
|
|
A race condition exists in the kernel <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=execve&sektion=2&format=html">execve(2)</a> implementation that opens a small window of vulnerability for a non-privileged user to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ptrace&sektion=2&format=html">ptrace(2)</a> attach to a suid/sgid process. |
A race condition exists in the kernel <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=execve&sektion=2&format=html">execve(2)</a> implementation that opens a small window of vulnerability for a non-privileged user to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ptrace&sektion=2&format=html">ptrace(2)</a> attach to a suid/sgid process. |
<br> |
<br> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/007_kernexec.patch">A source code patch exists which remedies the problem</a>. |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/007_kernexec.patch">A source code patch exists which remedies the problem</a>. |
<p> |
<p> |
<li><a name="sshcookie"></a> |
<li><a name="sshcookie"></a> |
<font color="#009000"><strong>006: SECURITY FIX: June 12, 2001</strong></font><br> |
<font color="#009000"><strong>006: SECURITY FIX: June 12, 2001</strong></font><br> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8&format=html">sshd(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8&format=html">sshd(8)</a> |
|
|
forwarding is enabled. X11 forwarding is disabled by default. |
forwarding is enabled. X11 forwarding is disabled by default. |
<br> |
<br> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/006_sshcookie.patch">A source code patch exists which remedies the problem</a>. |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/006_sshcookie.patch">A source code patch exists which remedies the problem</a>. |
<p> |
<p> |
<li><a name="pwd_mkdb"></a> |
<li><a name="pwd_mkdb"></a> |
<font color="#009000"><strong>005: RELIABILITY FIX: June 7, 2001</strong></font><br> |
<font color="#009000"><strong>005: RELIABILITY FIX: June 7, 2001</strong></font><br> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pwd_mkdb&sektion=8&format=html">pwd_mkdb(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pwd_mkdb&sektion=8&format=html">pwd_mkdb(8)</a> |
corrupts /etc/pwd.db when modifying an existing user. |
corrupts /etc/pwd.db when modifying an existing user. |
<br> |
<br> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/005_pwd_mkdb.patch">A source code patch exists which remedies the problem</a>. |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/005_pwd_mkdb.patch">A source code patch exists which remedies the problem</a>. |
<p> |
<p> |
<li><a name="isakmpd"></a> |
<li><a name="isakmpd"></a> |
<font color="#009000"><strong>004: RELIABILITY FIX: June 5, 2001</strong></font><br> |
<font color="#009000"><strong>004: RELIABILITY FIX: June 5, 2001</strong></font><br> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8&format=html">isakmpd(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8&format=html">isakmpd(8)</a> |
|
|
exactly N * 8 bytes long. |
exactly N * 8 bytes long. |
<br> |
<br> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/004_isakmpd.patch">A source code patch exists which remedies the problem</a>. |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/004_isakmpd.patch">A source code patch exists which remedies the problem</a>. |
<p> |
<p> |
<li><a name="cd_cover"></a> |
<li><a name="cd_cover"></a> |
<font color="#009000"><strong>003: DOCUMENTATION FIX: June 1, 2001</strong></font><br> |
<font color="#009000"><strong>003: DOCUMENTATION FIX: June 1, 2001</strong></font><br> |
The 2.9 CD cover states that XFree86 3.3.6-current is included. This is only half-true. |
The 2.9 CD cover states that XFree86 3.3.6-current is included. This is only half-true. |
In fact, the XFree86 included for all architectures is 4.0.3. On the i386, the |
In fact, the XFree86 included for all architectures is 4.0.3. On the i386, the |
3.3.6 Xservers have also been included, because 4.0.3 still has weak support for |
3.3.6 Xservers have also been included, because 4.0.3 still has weak support for |
some devices which 3.3.6 supported better. |
some devices which 3.3.6 supported better. |
<p> |
<p> |
<li><a name="fts"></a> |
<li><a name="fts"></a> |
<font color="#009000"><strong>002: SECURITY FIX: May 30, 2001</strong></font><br> |
<font color="#009000"><strong>002: SECURITY FIX: May 30, 2001</strong></font><br> |
Programs using the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fts&sektion=3&format=html">fts(3)</a> |
Programs using the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fts&sektion=3&format=html">fts(3)</a> |
|
|
The NVIDIA driver for XFree86 4.0.3 is incorrectly restoring the text |
The NVIDIA driver for XFree86 4.0.3 is incorrectly restoring the text |
mode palette upon exit of the X server. <a |
mode palette upon exit of the X server. <a |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/010_nvidia.patch"> |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/010_nvidia.patch"> |
A source code patch exists</a> which remedies the problem. |
A source code patch exists</a> which remedies the problem. |
To avoid rebuilding the whole XFree86 tree, an updated binary driver |
To avoid rebuilding the whole XFree86 tree, an updated binary driver |
is also available |
is also available |
<a |
<a |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/nv_drv.o">here |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/nv_drv.o">here |
</a>. Just grab it, copy it to /usr/X11R6/lib/modules/drivers/ and |
</a>. Just grab it, copy it to /usr/X11R6/lib/modules/drivers/ and |
|
|
<font color="#009000"><strong>009: RELIABILITY FIX: Jun 23, |
<font color="#009000"><strong>009: RELIABILITY FIX: Jun 23, |
2001</strong></font><br> |
2001</strong></font><br> |
The XF86Setup(1) configuration tool for XFree86 3.3.6 is producing |
The XF86Setup(1) configuration tool for XFree86 3.3.6 is producing |
corrupted /etc/XF86Config files. |
corrupted /etc/XF86Config files. |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/009_XF86Setup.patch"> |
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/2.9/i386/009_XF86Setup.patch"> |
A source code patch exists</a> which remedies the problem by linking |
A source code patch exists</a> which remedies the problem by linking |
XF86Setup against the XFree86 3.3.6 version of libXxf86vm.a. |
XF86Setup against the XFree86 3.3.6 version of libXxf86vm.a. |
|
|
<br> |
<br> |
|
|
<hr> |
<hr> |
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
<a href="mailto:www@openbsd.org">www@openbsd.org</a> |
<a href="mailto:www@openbsd.org">www@openbsd.org</a> |
<br><small>$OpenBSD$</small> |
<br><small>$OpenBSD$</small> |
|
|