| version 1.42, 2019/04/02 12:46:57 |
version 1.43, 2019/05/27 22:55:20 |
|
|
| <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> |
<!doctype html> |
| <html> |
<html lang=en id=errata> |
| <head> |
<meta charset=utf-8> |
| |
|
| <title>OpenBSD 4.8 Errata</title> |
<title>OpenBSD 4.8 Errata</title> |
| <meta name="description" content="the OpenBSD CD errata page"> |
<meta name="description" content="the OpenBSD CD errata page"> |
| <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> |
|
| <meta name="viewport" content="width=device-width, initial-scale=1"> |
<meta name="viewport" content="width=device-width, initial-scale=1"> |
| <link rel="stylesheet" type="text/css" href="openbsd.css"> |
<link rel="stylesheet" type="text/css" href="openbsd.css"> |
| <link rel="canonical" href="https://www.openbsd.org/errata48.html"> |
<link rel="canonical" href="https://www.openbsd.org/errata48.html"> |
| </head> |
|
| |
|
| <!-- |
<!-- |
| IMPORTANT REMINDER |
IMPORTANT REMINDER |
| IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE |
IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE |
| --> |
--> |
| |
|
| <body bgcolor="#ffffff" text="#000000" link="#23238E"> |
|
| |
|
| <h2> |
<h2 id=OpenBSD> |
| <a href="index.html"> |
<a href="index.html"> |
| <font color="#0000ff"><i>Open</i></font><font color="#000084">BSD</font></a> |
<i>Open</i><b>BSD</b></a> |
| <font color="#e00000">4.8 Errata</font> |
4.8 Errata |
| </h2> |
</h2> |
| <hr> |
<hr> |
| |
|
|
|
| |
|
| <ul> |
<ul> |
| <li id="p010_sis"> |
<li id="p010_sis"> |
| <font color="#009000"><strong>010: RELIABILITY FIX: February 16, 2011</strong></font> |
<strong>010: RELIABILITY FIX: February 16, 2011</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| The <a href="https://man.openbsd.org/OpenBSD-4.8/sis.4">sis(4)</a> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/sis.4">sis(4)</a> |
| driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
|
|
| <p> |
<p> |
| |
|
| <li id="p009_pf"> |
<li id="p009_pf"> |
| <font color="#009000"><strong>009: SECURITY FIX: February 16, 2011</strong></font> |
<strong>009: SECURITY FIX: February 16, 2011</strong> |
| <i>Little-endian |
<i>Little-endian |
| architectures</i><br> |
architectures</i><br> |
| PF rules specifying address ranges (e.g. "10.1.1.1 - 10.1.1.5") were |
PF rules specifying address ranges (e.g. "10.1.1.1 - 10.1.1.5") were |
|
|
| <p> |
<p> |
| |
|
| <li id="p008_openssl"> |
<li id="p008_openssl"> |
| <font color="#009000"><strong>008: SECURITY FIX: February 11, 2011</strong></font> |
<strong>008: SECURITY FIX: February 11, 2011</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| An incorrectly formatted ClientHello handshake message could cause |
An incorrectly formatted ClientHello handshake message could cause |
| OpenSSL to parse past the end of the message. An attacker could use this flaw |
OpenSSL to parse past the end of the message. An attacker could use this flaw |
|
|
| <p> |
<p> |
| |
|
| <li id="p007_rtsock"> |
<li id="p007_rtsock"> |
| <font color="#009000"><strong>007: RELIABILITY FIX: January 13, 2011</strong></font> |
<strong>007: RELIABILITY FIX: January 13, 2011</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| sp_protocol in RTM_DELETE messages could contain garbage values |
sp_protocol in RTM_DELETE messages could contain garbage values |
| leading to routing socket users that restrict the AF (such as ospfd) |
leading to routing socket users that restrict the AF (such as ospfd) |
|
|
| <p> |
<p> |
| |
|
| <li id="p006_cbc"> |
<li id="p006_cbc"> |
| <font color="#009000"><strong>006: RELIABILITY FIX: December 17, 2010</strong></font> |
<strong>006: RELIABILITY FIX: December 17, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
| This fixes aes-ni, via xcrypt and various drivers |
This fixes aes-ni, via xcrypt and various drivers |
|
|
| <p> |
<p> |
| |
|
| <li id="p005_pf"> |
<li id="p005_pf"> |
| <font color="#009000"><strong>005: SECURITY FIX: December 17, 2010</strong></font> |
<strong>005: SECURITY FIX: December 17, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Insufficent initialization of the pf rule structure in the ioctl |
Insufficent initialization of the pf rule structure in the ioctl |
| handler may allow userland to modify kernel memory. By default root |
handler may allow userland to modify kernel memory. By default root |
|
|
| <p> |
<p> |
| |
|
| <li id="p004_openssl"> |
<li id="p004_openssl"> |
| <font color="#009000"><strong>004: RELIABILITY FIX: November 17, 2010</strong></font> |
<strong>004: RELIABILITY FIX: November 17, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
| a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded |
a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded |
|
|
| <p> |
<p> |
| |
|
| <li id="p003_vr"> |
<li id="p003_vr"> |
| <font color="#009000"><strong>003: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>003: RELIABILITY FIX: November 16, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| The <a href="https://man.openbsd.org/OpenBSD-4.8/vr.4">vr(4)</a> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/vr.4">vr(4)</a> |
| driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
|
|
| <p> |
<p> |
| |
|
| <li id="p002_pci"> |
<li id="p002_pci"> |
| <font color="#009000"><strong>002: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>002: RELIABILITY FIX: November 16, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Certain PCI based hardware may improperly announce their Base Address |
Certain PCI based hardware may improperly announce their Base Address |
| Registers as prefetchable even though they are not. This may cause |
Registers as prefetchable even though they are not. This may cause |
|
|
| <p> |
<p> |
| |
|
| <li id="p001_bgpd"> |
<li id="p001_bgpd"> |
| <font color="#009000"><strong>001: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>001: RELIABILITY FIX: November 16, 2010</strong> |
| <i>All architectures</i><br> |
<i>All architectures</i><br> |
| Uninitialized memory may force the RDE into route-collector mode on startup and |
Uninitialized memory may force the RDE into route-collector mode on startup and |
| may prevent bgpd from updating or announcing any routes. |
may prevent bgpd from updating or announcing any routes. |
|
|
| </ul> |
</ul> |
| |
|
| <hr> |
<hr> |
| |
|
| </body> |
|
| </html> |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to errata48.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www