-035: SECURITY FIX: December 13, 2004
+035: SECURITY FIX: December 13, 2004All architectures
On systems running
isakmpd(8)
@@ -98,7 +97,7 @@
A source code patch exists which remedies this problem.
-034: RELIABILITY FIX: November 10, 2004
+034: RELIABILITY FIX: November 10, 2004All architectures
Due to a bug in
lynx(1)
@@ -112,7 +111,7 @@
A source code patch exists which remedies this problem.
-033: RELIABILITY FIX: November 10, 2004
+033: RELIABILITY FIX: November 10, 2004All architectures pppd(8)
contains a bug that allows an attacker to crash his own connection, but it cannot
@@ -122,7 +121,7 @@
A source code patch exists which remedies this problem.
-032: RELIABILITY FIX: November 10, 2004
+032: RELIABILITY FIX: November 10, 2004All architectures
BIND contains a bug which results in BIND trying to contact nameservers via IPv6, even in
cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and
@@ -132,7 +131,7 @@
A source code patch exists which remedies this problem.
-031: SECURITY FIX: September 20, 2004
+031: SECURITY FIX: September 20, 2004All architectures
Eilko Bos reported that radius authentication, as implemented by
login_radius(8),
@@ -144,7 +143,7 @@
A source code patch exists which remedies this problem.
-030: SECURITY FIX: September 16, 2004
+030: SECURITY FIX: September 16, 2004All architectures
Chris Evans reported several flaws (stack and integer overflows) in the
Xpm
@@ -158,7 +157,7 @@
A source code patch exists which remedies this problem.
-029: SECURITY FIX: September 10, 2004
+029: SECURITY FIX: September 10, 2004All architectures httpd(8)
's mod_rewrite module can be made to write one zero byte in an arbitrary memory
@@ -171,7 +170,7 @@
-028: RELIABILITY FIX: August 26, 2004
+028: RELIABILITY FIX: August 26, 2004All architectures
As
reported
@@ -183,7 +182,7 @@
A source code patch exists which remedies this problem.
-027: RELIABILITY FIX: August 25, 2004
+027: RELIABILITY FIX: August 25, 2004All architectures
Improved verification of ICMP errors in order to minimize the impact of ICMP attacks
against TCP.
@@ -194,7 +193,7 @@
A source code patch exists which remedies this problem.
-026: RELIABILITY FIX: Jul 25, 2004
+026: RELIABILITY FIX: Jul 25, 2004All architectures
Under a certain network load the kernel can run out of stack space. This was
encountered in an environment using CARP on a VLAN interface. This issue initially
@@ -204,7 +203,7 @@
A source code patch exists which remedies this problem.
-025: SECURITY FIX: June 12, 2004
+025: SECURITY FIX: June 12, 2004All architectures
Multiple vulnerabilities have been found in
httpd(8)
@@ -218,7 +217,7 @@
A source code patch exists which remedies this problem.
-024: SECURITY FIX: June 10, 2004
+024: SECURITY FIX: June 10, 2004All architectures
As
disclosed
@@ -231,7 +230,7 @@
A source code patch exists which remedies this problem.
-023: SECURITY FIX: June 9, 2004
+023: SECURITY FIX: June 9, 2004All architectures
Multiple remote vulnerabilities have been found in the
cvs(1)
@@ -242,7 +241,7 @@
A source code patch exists which remedies this problem.
-022: SECURITY FIX: May 30, 2004
+022: SECURITY FIX: May 30, 2004All architectures
A flaw in the Kerberos V
kdc(8)
@@ -257,7 +256,7 @@
A source code patch exists which remedies this problem.
-021: SECURITY FIX: May 20, 2004
+021: SECURITY FIX: May 20, 2004All architectures
A heap overflow in the
cvs(1)
@@ -269,7 +268,7 @@
A source code patch exists which remedies this problem.
-020: SECURITY FIX: May 13, 2004
+020: SECURITY FIX: May 13, 2004All architectures
Check for integer overflow in procfs. Use of procfs is not recommended.
@@ -277,7 +276,7 @@
A source code patch exists which remedies this problem.
-019: RELIABILITY FIX: May 6, 2004
+019: RELIABILITY FIX: May 6, 2004All architectures
Reply to in-window SYN with a rate-limited ACK.
@@ -285,7 +284,7 @@
A source code patch exists which remedies this problem.
-018: RELIABILITY FIX: May 5, 2004
+018: RELIABILITY FIX: May 5, 2004All architectures
Under load "recent model"
gdt(4)
@@ -295,7 +294,7 @@
A source code patch exists which remedies this problem.
-017: SECURITY FIX: May 5, 2004
+017: SECURITY FIX: May 5, 2004All architectures
Pathname validation problems have been found in
cvs(1),
@@ -308,7 +307,7 @@
A source code patch exists which remedies this problem.
-016: RELIABILITY FIX: March 17, 2004
+016: RELIABILITY FIX: March 17, 2004All architectures
A missing check for a NULL-pointer dereference has been found in
ssl(3).
@@ -319,7 +318,7 @@
A source code patch exists which remedies this problem.
-015: RELIABILITY FIX: March 17, 2004
+015: RELIABILITY FIX: March 17, 2004All architectures
Defects in the payload validation and processing functions of
isakmpd(8)
@@ -331,7 +330,7 @@
A source code patch exists which remedies this problem.
-014: SECURITY FIX: March 13, 2004
+014: SECURITY FIX: March 13, 2004All architectures
Due to a bug in the parsing of Allow/Deny rules for
httpd(8)'s
@@ -342,7 +341,7 @@
A source code patch exists which remedies this problem.
-013: RELIABILITY FIX: March 8, 2004
+013: RELIABILITY FIX: March 8, 2004All architectures
OpenBSD's TCP/IP stack did not impose limits on how many out-of-order
TCP segments are queued in the system. An attacker could
@@ -353,7 +352,7 @@
A source code patch exists which remedies this problem.
-012: RELIABILITY FIX: February 14, 2004
+012: RELIABILITY FIX: February 14, 2004All architectures
Several buffer overflows exist in the code parsing
font.aliases files in XFree86. Thanks to ProPolice, these cannot be
@@ -363,7 +362,7 @@
A source code patch exists which remedies this problem.
-011: SECURITY FIX: February 8, 2004
+011: SECURITY FIX: February 8, 2004All architectures
An IPv6 MTU handling problem exists that could be used by an attacker
to cause a denial of service attack against hosts with reachable IPv6
@@ -373,7 +372,7 @@
A source code patch exists which remedies this problem.
-010: SECURITY FIX: February 5, 2004
+010: SECURITY FIX: February 5, 2004All architectures
A reference counting bug exists in the
shmat(2)
@@ -384,7 +383,7 @@
A source code patch exists which remedies this problem.
-009: SECURITY FIX: January 13, 2004
+009: SECURITY FIX: January 13, 2004All architectures
Several message handling flaws in
isakmpd(8)
@@ -396,7 +395,7 @@
A source code patch exists which remedies this problem.
-008: RELIABILITY FIX: November 20, 2003
+008: RELIABILITY FIX: November 20, 2003All architectures
An improper bounds check makes it possible for a local user to cause a crash
by passing the
@@ -408,7 +407,7 @@
A source code patch exists which remedies this problem.
-007: RELIABILITY FIX: November 20, 2003
+007: RELIABILITY FIX: November 20, 2003All architectures
It is possible for a local user to cause a crash via
sysctl(3) with certain arguments.
@@ -417,7 +416,7 @@
A source code patch exists which remedies this problem.
-006: SECURITY FIX: November 17, 2003
+006: SECURITY FIX: November 17, 2003i386 only
It may be possible for a local user to overrun the stack in
compat_ibcs2(8).
@@ -430,7 +429,7 @@
A source code patch exists which remedies this problem.
-005: RELIABILITY FIX: November 4, 2003
+005: RELIABILITY FIX: November 4, 2003All architectures
It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header.
@@ -438,19 +437,19 @@
A source code patch exists which remedies this problem.
-004: RELIABILITY FIX: November 1, 2003
+004: RELIABILITY FIX: November 1, 2003All architectures
-A user with write permission to httpd.conf or a .htaccess
+A user with write permission to httpd.conf or a .htaccess
file can crash
httpd(8)
-or potentially run arbitrary code as the user www (although it
+or potentially run arbitrary code as the user www (although it
is believed that ProPolice will prevent code execution).
A source code patch exists which remedies this problem.
-003: RELIABILITY FIX: November 1, 2003
+003: RELIABILITY FIX: November 1, 2003All architectures
It is possible for a local user to cause a system panic by flooding it with spoofed ARP
requests.
@@ -458,7 +457,7 @@
A source code patch exists which remedies this problem.
-002: SECURITY FIX: November 1, 2003
+002: SECURITY FIX: November 1, 2003All architectures
The use of certain ASN.1 encodings or malformed public keys may allow an
attacker to mount a denial of service attack against applications linked with
@@ -468,22 +467,19 @@
A source code patch exists which remedies this problem.
-001: DOCUMENTATION FIX: November 1, 2003
+001: DOCUMENTATION FIX: November 1, 2003All architectures
The CD insert documentation has an incorrect example for package installation.
Where it is written: