| version 1.43, 2014/10/02 14:34:45 |
version 1.44, 2015/02/14 04:36:51 |
|
|
| |
|
| <ul> |
<ul> |
| |
|
| <li><a name="xorg"></a> |
<li id="xorg"> |
| <font color="#009000"><strong>013: SECURITY FIX: May 2, 2006</strong></font> |
<font color="#009000"><strong>013: SECURITY FIX: May 2, 2006</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| A security vulnerability has been found in the X.Org server -- |
A security vulnerability has been found in the X.Org server -- |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="sendmail"></a> |
<li id="sendmail"> |
| <font color="#009000"><strong>012: SECURITY FIX: March 25, 2006</strong></font> |
<font color="#009000"><strong>012: SECURITY FIX: March 25, 2006</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| A race condition has been reported to exist in the handling by sendmail of |
A race condition has been reported to exist in the handling by sendmail of |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="ssh"></a> |
<li id="ssh"> |
| <font color="#009000"><strong>011: SECURITY FIX: February 12, 2006</strong></font> |
<font color="#009000"><strong>011: SECURITY FIX: February 12, 2006</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Josh Bressers has reported a weakness in OpenSSH caused due to the insecure use of the |
Josh Bressers has reported a weakness in OpenSSH caused due to the insecure use of the |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="i386machdep"></a> |
<li id="i386machdep"> |
| <font color="#009000"><strong>010: RELIABILITY FIX: January 13, 2006</strong></font> |
<font color="#009000"><strong>010: RELIABILITY FIX: January 13, 2006</strong></font> |
| <i>i386 architecture</i><br> |
<i>i386 architecture</i><br> |
| Constrain |
Constrain |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="i386pmap"></a> |
<li id="i386pmap"> |
| <font color="#009000"><strong>009: RELIABILITY FIX: January 13, 2006</strong></font> |
<font color="#009000"><strong>009: RELIABILITY FIX: January 13, 2006</strong></font> |
| <i>i386 architecture</i><br> |
<i>i386 architecture</i><br> |
| Change the implementation of i386 W^X so that the "execute line" can move around. |
Change the implementation of i386 W^X so that the "execute line" can move around. |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="fd"></a> |
<li id="fd"> |
| <font color="#009000"><strong>008: SECURITY FIX: January 5, 2006</strong></font> |
<font color="#009000"><strong>008: SECURITY FIX: January 5, 2006</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Do not allow users to trick suid programs into re-opening files via /dev/fd. |
Do not allow users to trick suid programs into re-opening files via /dev/fd. |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="perl"></a> |
<li id="perl"> |
| <font color="#009000"><strong>007: SECURITY FIX: January 5, 2006</strong></font> |
<font color="#009000"><strong>007: SECURITY FIX: January 5, 2006</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| A buffer overflow has been found in the Perl interpreter with the sprintf function which |
A buffer overflow has been found in the Perl interpreter with the sprintf function which |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="nat-t"></a> |
<li id="nat-t"> |
| <font color="#009000"><strong>006: RELIABILITY FIX: November 5, 2005</strong></font> |
<font color="#009000"><strong>006: RELIABILITY FIX: November 5, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Due to wrong advertisement of RFC 3947 compliance interoperability problems with |
Due to wrong advertisement of RFC 3947 compliance interoperability problems with |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="libz2"></a> |
<li id="libz2"> |
| <font color="#009000"><strong>005: SECURITY FIX: July 21, 2005</strong></font> |
<font color="#009000"><strong>005: SECURITY FIX: July 21, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| A buffer overflow has been found in |
A buffer overflow has been found in |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="libz"></a> |
<li id="libz"> |
| <font color="#009000"><strong>004: SECURITY FIX: July 6, 2005</strong></font> |
<font color="#009000"><strong>004: SECURITY FIX: July 6, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| A buffer overflow has been found in |
A buffer overflow has been found in |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="sudo"></a> |
<li id="sudo"> |
| <font color="#009000"><strong>003: SECURITY FIX: June 20, 2005</strong></font> |
<font color="#009000"><strong>003: SECURITY FIX: June 20, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Due to a race condition in its command pathname handling, a user with |
Due to a race condition in its command pathname handling, a user with |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="getsockopt"></a> |
<li id="getsockopt"> |
| <font color="#009000"><strong>002: RELIABILITY FIX: June 15, 2005</strong></font> |
<font color="#009000"><strong>002: RELIABILITY FIX: June 15, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| As discovered by Stefan Miltchev calling |
As discovered by Stefan Miltchev calling |
|
|
| A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
| <p> |
<p> |
| |
|
| <li><a name="cvs"></a> |
<li id="cvs"> |
| <font color="#009000"><strong>001: SECURITY FIX: June 7, 2005</strong></font> |
<font color="#009000"><strong>001: SECURITY FIX: June 7, 2005</strong></font> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to errata37.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www