version 1.4, 2005/11/28 15:43:27 |
version 1.5, 2006/01/05 05:34:08 |
|
|
<a name="vax"></a> |
<a name="vax"></a> |
<ul> |
<ul> |
|
|
|
<li><a name="fd"></a> |
|
<font color="#009000"><strong>008: SECURITY FIX: January 5, 2006</strong></font> <i>All architectures</i><br> |
|
Do not allow users to trick suid programs into re-opening files via /dev/fd. |
|
<br> |
|
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/008_fd.patch"> |
|
A source code patch exists which remedies this problem</a>.<br> |
|
<p> |
|
|
|
<li><a name="perl"></a> |
|
<font color="#009000"><strong>007: SECURITY FIX: January 5, 2006</strong></font> <i>All architectures</i><br> |
|
A buffer overflow has been found in the Perl interpreter with the sprintf function which |
|
may be exploitable under certain conditions. |
|
<br> |
|
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch"> |
|
A source code patch exists which remedies this problem</a>.<br> |
|
<p> |
|
|
<li><a name="nat-t"></a> |
<li><a name="nat-t"></a> |
<font color="#009000"><strong>006: RELIABILITY FIX: November 5, 2005</strong></font> <i>All architectures</i><br> |
<font color="#009000"><strong>006: RELIABILITY FIX: November 5, 2005</strong></font> <i>All architectures</i><br> |
Due to wrong advertisement of RFC 3947 compliance interoperability problems with |
Due to wrong advertisement of RFC 3947 compliance interoperability problems with |