[BACK]Return to errata36.html CVS log [TXT][DIR] Up to [local] / www

Diff for /www/errata36.html between version 1.51 and 1.52

version 1.51, 2016/08/15 02:22:06 version 1.52, 2016/10/16 19:11:29
Line 70 
Line 70 
 <br>  <br>
 <hr>  <hr>
   
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz">
 You can also fetch a tar.gz file containing all the following patches</a>.  You can also fetch a tar.gz file containing all the following patches</a>.
 This file is updated once a day.  This file is updated once a day.
 <p>  <p>
Line 95 
Line 95 
 which may be exploitable.<br>  which may be exploitable.<br>
 Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch.  Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 106 
Line 106 
 <a href="http://man.openbsd.org/?query=compress&sektion=3">compress(3)</a>  <a href="http://man.openbsd.org/?query=compress&sektion=3">compress(3)</a>
 which may be exploitable.  which may be exploitable.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 119 
Line 119 
 is followed by an entry that grants <tt>sudo ALL</tt> privileges to  is followed by an entry that grants <tt>sudo ALL</tt> privileges to
 another user.  another user.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 132 
Line 132 
 <a href="http://man.openbsd.org/?query=ipsec&sektion=4">ipsec(4)</a>  <a href="http://man.openbsd.org/?query=ipsec&sektion=4">ipsec(4)</a>
 credentials for a socket can result in a kernel panic.  credentials for a socket can result in a kernel panic.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 145 
Line 145 
 <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a>  <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a>
 .  .
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 156 
Line 156 
 <a href="http://man.openbsd.org/?query=tcp&sektion=4">tcp(4)</a>  <a href="http://man.openbsd.org/?query=tcp&sektion=4">tcp(4)</a>
 timestamps.  timestamps.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 171 
Line 171 
 Noone should use telnet anymore.  Please use  Noone should use telnet anymore.  Please use
 <a href="http://man.openbsd.org/?query=ssh&sektion=1">ssh(1)</a>.  <a href="http://man.openbsd.org/?query=ssh&sektion=1">ssh(1)</a>.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 183 
Line 183 
 stack can lead to memory exhaustion or processing of TCP segments with  stack can lead to memory exhaustion or processing of TCP segments with
 invalid SACK options and cause a system crash.  invalid SACK options and cause a system crash.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 194 
Line 194 
 <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a>  <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a>
 functions to prevent their misuse.  functions to prevent their misuse.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 205 
Line 205 
 <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a>  <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a>
 functions to prevent their misuse.  functions to prevent their misuse.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 218 
Line 218 
 retransmit timeout. By sending packets with specific values in the TCP  retransmit timeout. By sending packets with specific values in the TCP
 timestamp option, an attacker can cause a system panic.  timestamp option, an attacker can cause a system panic.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 233 
Line 233 
 This would require enabling the XBitHack directive or server-side  This would require enabling the XBitHack directive or server-side
 includes and making use of a malicious document.  includes and making use of a malicious document.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 245 
Line 245 
 library function contains a memory management error, which causes failure  library function contains a memory management error, which causes failure
 to retrieve the current working directory if the path is very long.  to retrieve the current working directory if the path is very long.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 259 
Line 259 
 <a href="http://man.openbsd.org/?query=ipsec&sektion=4&amp;manpath=OpenBSD+Current&amp&amp;format=html">ipsec(4)</a>  <a href="http://man.openbsd.org/?query=ipsec&sektion=4&amp;manpath=OpenBSD+Current&amp&amp;format=html">ipsec(4)</a>
 credentials on a socket.  credentials on a socket.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 269 
Line 269 
 Fix for transmit side breakage on macppc and mbuf leaks with  Fix for transmit side breakage on macppc and mbuf leaks with
 <a href="http://man.openbsd.org/?query=xl&sektion=4">xl(4)</a>.  <a href="http://man.openbsd.org/?query=xl&sektion=4">xl(4)</a>.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 280 
Line 280 
 <a href="http://man.openbsd.org/?query=isakmpd&sektion=8">isakmpd(8)</a>  <a href="http://man.openbsd.org/?query=isakmpd&sektion=8">isakmpd(8)</a>
 and other ISAKMP/IKE implementations.  and other ISAKMP/IKE implementations.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
   
 <p>  <p>
Line 295 
Line 295 
 <a href="http://man.openbsd.org/?query=lynx&sektion=1">lynx(1)</a>  <a href="http://man.openbsd.org/?query=lynx&sektion=1">lynx(1)</a>
 to exhaust memory and then crash when parsing such pages.  to exhaust memory and then crash when parsing such pages.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 306 
Line 306 
 contains a bug that allows an attacker to crash his own connection, but it cannot  contains a bug that allows an attacker to crash his own connection, but it cannot
 be used to deny service to other users.  be used to deny service to other users.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 317 
Line 317 
 cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and  cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and
 thus slow DNS queries.  thus slow DNS queries.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Line 327 
Line 327 
 Fix detection of tape blocksize during device open. Corrects problem with  Fix detection of tape blocksize during device open. Corrects problem with
 <a href="http://man.openbsd.org/?query=restore&sektion=8">restore(8)</a>.  <a href="http://man.openbsd.org/?query=restore&sektion=8">restore(8)</a>.
 <br>  <br>
 <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch">  <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch">
 A source code patch exists which remedies this problem.</a>  A source code patch exists which remedies this problem.</a>
 <p>  <p>
   
Legend:
Removed from v.1.51  
changed lines
  Added in v.1.52