Return to errata36.html CVS log | Up to [local] / www |
version 1.51, 2016/08/15 02:22:06 | version 1.52, 2016/10/16 19:11:29 | ||
---|---|---|---|
|
|
||
<br> | <br> | ||
<hr> | <hr> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6.tar.gz"> | ||
You can also fetch a tar.gz file containing all the following patches</a>. | You can also fetch a tar.gz file containing all the following patches</a>. | ||
This file is updated once a day. | This file is updated once a day. | ||
<p> | <p> | ||
|
|
||
which may be exploitable.<br> | which may be exploitable.<br> | ||
Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch. | Please note that this fixes a different buffer overflow than the <a href="#libz">previous</a> zlib patch. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/020_libz.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=compress&sektion=3">compress(3)</a> | <a href="http://man.openbsd.org/?query=compress&sektion=3">compress(3)</a> | ||
which may be exploitable. | which may be exploitable. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/019_libz.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
is followed by an entry that grants <tt>sudo ALL</tt> privileges to | is followed by an entry that grants <tt>sudo ALL</tt> privileges to | ||
another user. | another user. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/018_sudo.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=ipsec&sektion=4">ipsec(4)</a> | <a href="http://man.openbsd.org/?query=ipsec&sektion=4">ipsec(4)</a> | ||
credentials for a socket can result in a kernel panic. | credentials for a socket can result in a kernel panic. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/017_getsockopt.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a> | <a href="http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753">CAN-2005-0753</a> | ||
. | . | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/016_cvs.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=tcp&sektion=4">tcp(4)</a> | <a href="http://man.openbsd.org/?query=tcp&sektion=4">tcp(4)</a> | ||
timestamps. | timestamps. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/015_tcp.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
Noone should use telnet anymore. Please use | Noone should use telnet anymore. Please use | ||
<a href="http://man.openbsd.org/?query=ssh&sektion=1">ssh(1)</a>. | <a href="http://man.openbsd.org/?query=ssh&sektion=1">ssh(1)</a>. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/014_telnet.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
stack can lead to memory exhaustion or processing of TCP segments with | stack can lead to memory exhaustion or processing of TCP segments with | ||
invalid SACK options and cause a system crash. | invalid SACK options and cause a system crash. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/013_sack.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a> | <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a> | ||
functions to prevent their misuse. | functions to prevent their misuse. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/amd64/012_copy.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a> | <a href="http://man.openbsd.org/?query=copy&sektion=9">copy(9)</a> | ||
functions to prevent their misuse. | functions to prevent their misuse. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/i386/011_locore.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
retransmit timeout. By sending packets with specific values in the TCP | retransmit timeout. By sending packets with specific values in the TCP | ||
timestamp option, an attacker can cause a system panic. | timestamp option, an attacker can cause a system panic. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
This would require enabling the XBitHack directive or server-side | This would require enabling the XBitHack directive or server-side | ||
includes and making use of a malicious document. | includes and making use of a malicious document. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/009_httpd.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
library function contains a memory management error, which causes failure | library function contains a memory management error, which causes failure | ||
to retrieve the current working directory if the path is very long. | to retrieve the current working directory if the path is very long. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/008_getcwd.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=ipsec&sektion=4&manpath=OpenBSD+Current&&format=html">ipsec(4)</a> | <a href="http://man.openbsd.org/?query=ipsec&sektion=4&manpath=OpenBSD+Current&&format=html">ipsec(4)</a> | ||
credentials on a socket. | credentials on a socket. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/007_pfkey.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
Fix for transmit side breakage on macppc and mbuf leaks with | Fix for transmit side breakage on macppc and mbuf leaks with | ||
<a href="http://man.openbsd.org/?query=xl&sektion=4">xl(4)</a>. | <a href="http://man.openbsd.org/?query=xl&sektion=4">xl(4)</a>. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/006_xl.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=isakmpd&sektion=8">isakmpd(8)</a> | <a href="http://man.openbsd.org/?query=isakmpd&sektion=8">isakmpd(8)</a> | ||
and other ISAKMP/IKE implementations. | and other ISAKMP/IKE implementations. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/005_isakmpd.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
<a href="http://man.openbsd.org/?query=lynx&sektion=1">lynx(1)</a> | <a href="http://man.openbsd.org/?query=lynx&sektion=1">lynx(1)</a> | ||
to exhaust memory and then crash when parsing such pages. | to exhaust memory and then crash when parsing such pages. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/004_lynx.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
contains a bug that allows an attacker to crash his own connection, but it cannot | contains a bug that allows an attacker to crash his own connection, but it cannot | ||
be used to deny service to other users. | be used to deny service to other users. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/003_pppd.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and | cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and | ||
thus slow DNS queries. | thus slow DNS queries. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/002_bind.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
Fix detection of tape blocksize during device open. Corrects problem with | Fix detection of tape blocksize during device open. Corrects problem with | ||
<a href="http://man.openbsd.org/?query=restore&sektion=8">restore(8)</a>. | <a href="http://man.openbsd.org/?query=restore&sektion=8">restore(8)</a>. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/001_st.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||