www/errata36.html - diff - 1.22

Return to errata36.html CVS log

Up to [local] / www

Diff for /www/errata36.html between version 1.21 and 1.22

version 1.21, 2010/03/08 21:53:37

version 1.22, 2010/07/08 19:00:07

Line 54

Line 54

<br>

<br>

<hr>

<hr>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz">

You can also fetch a tar.gz file containing all the following patches</a>.

You can also fetch a tar.gz file containing all the following patches</a>.

This file is updated once a day.

This file is updated once a day.

Line 90

Line 90

which may be exploitable.<br>

which may be exploitable.<br>

Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch.

Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 100

Line 100

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compress&sektion=3">compress(3)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compress&sektion=3">compress(3)</a>

which may be exploitable.

which may be exploitable.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 112

Line 112

is followed by an entry that grants <tt>sudo ALL</tt> privileges to

is followed by an entry that grants <tt>sudo ALL</tt> privileges to

another user.

another user.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 124

Line 124

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&sektion=4">ipsec(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&sektion=4">ipsec(4)</a>

credentials for a socket can result in a kernel panic.

credentials for a socket can result in a kernel panic.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 136

Line 136

<a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a>

<a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a>

.

.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 146

Line 146

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcp&sektion=4">tcp(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcp&sektion=4">tcp(4)</a>

timestamps.

timestamps.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 160

Line 160

Noone should use telnet anymore. Please use

Noone should use telnet anymore. Please use

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a>.

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a>.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 171

Line 171

stack can lead to memory exhaustion or processing of TCP segments with

stack can lead to memory exhaustion or processing of TCP segments with

invalid SACK options and cause a system crash.

invalid SACK options and cause a system crash.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 181

Line 181

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=copy&sektion=9">copy(9)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=copy&sektion=9">copy(9)</a>

functions to prevent their misuse.

functions to prevent their misuse.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 191

Line 191

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=copy&sektion=9">copy(9)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=copy&sektion=9">copy(9)</a>

functions to prevent their misuse.

functions to prevent their misuse.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 203

Line 203

retransmit timeout. By sending packets with specific values in the TCP

retransmit timeout. By sending packets with specific values in the TCP

timestamp option, an attacker can cause a system panic.

timestamp option, an attacker can cause a system panic.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 217

Line 217

This would require enabling the XBitHack directive or server-side

This would require enabling the XBitHack directive or server-side

includes and making use of a malicious document.

includes and making use of a malicious document.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 228

Line 228

library function contains a memory management error, which causes failure

library function contains a memory management error, which causes failure

to retrieve the current working directory if the path is very long.

to retrieve the current working directory if the path is very long.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 241

Line 241

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&sektion=4&manpath=OpenBSD+Current&amp&format=html">ipsec(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&sektion=4&manpath=OpenBSD+Current&amp&format=html">ipsec(4)</a>

credentials on a socket.

credentials on a socket.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 250

Line 250

Fix for transmit side breakage on macppc and mbuf leaks with

Fix for transmit side breakage on macppc and mbuf leaks with

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xl&sektion=4">xl(4)</a>.

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xl&sektion=4">xl(4)</a>.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 260

Line 260

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>

and other ISAKMP/IKE implementations.

and other ISAKMP/IKE implementations.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 274

Line 274

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lynx&sektion=1">lynx(1)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lynx&sektion=1">lynx(1)</a>

to exhaust memory and then crash when parsing such pages.

to exhaust memory and then crash when parsing such pages.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 284

Line 284

contains a bug that allows an attacker to crash his own connection, but it cannot

contains a bug that allows an attacker to crash his own connection, but it cannot

be used to deny service to other users.

be used to deny service to other users.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 294

Line 294

cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and

cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and

thus slow DNS queries.

thus slow DNS queries.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 303

Line 303

Fix detection of tape blocksize during device open. Corrects problem with

Fix detection of tape blocksize during device open. Corrects problem with

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=restore&sektion=8">restore(8)</a>.

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=restore&sektion=8">restore(8)</a>.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

</ul>

</ul>