version 1.42, 2019/04/02 12:46:57 |
version 1.43, 2019/05/27 22:55:20 |
|
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> |
<!doctype html> |
<html> |
<html lang=en id=errata> |
<head> |
<meta charset=utf-8> |
|
|
<title>OpenBSD 4.8 Errata</title> |
<title>OpenBSD 4.8 Errata</title> |
<meta name="description" content="the OpenBSD CD errata page"> |
<meta name="description" content="the OpenBSD CD errata page"> |
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> |
|
<meta name="viewport" content="width=device-width, initial-scale=1"> |
<meta name="viewport" content="width=device-width, initial-scale=1"> |
<link rel="stylesheet" type="text/css" href="openbsd.css"> |
<link rel="stylesheet" type="text/css" href="openbsd.css"> |
<link rel="canonical" href="https://www.openbsd.org/errata48.html"> |
<link rel="canonical" href="https://www.openbsd.org/errata48.html"> |
</head> |
|
|
|
<!-- |
<!-- |
IMPORTANT REMINDER |
IMPORTANT REMINDER |
IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE |
IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE |
--> |
--> |
|
|
<body bgcolor="#ffffff" text="#000000" link="#23238E"> |
|
|
|
<h2> |
<h2 id=OpenBSD> |
<a href="index.html"> |
<a href="index.html"> |
<font color="#0000ff"><i>Open</i></font><font color="#000084">BSD</font></a> |
<i>Open</i><b>BSD</b></a> |
<font color="#e00000">4.8 Errata</font> |
4.8 Errata |
</h2> |
</h2> |
<hr> |
<hr> |
|
|
|
|
|
|
<ul> |
<ul> |
<li id="p010_sis"> |
<li id="p010_sis"> |
<font color="#009000"><strong>010: RELIABILITY FIX: February 16, 2011</strong></font> |
<strong>010: RELIABILITY FIX: February 16, 2011</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/sis.4">sis(4)</a> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/sis.4">sis(4)</a> |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
|
|
<p> |
<p> |
|
|
<li id="p009_pf"> |
<li id="p009_pf"> |
<font color="#009000"><strong>009: SECURITY FIX: February 16, 2011</strong></font> |
<strong>009: SECURITY FIX: February 16, 2011</strong> |
<i>Little-endian |
<i>Little-endian |
architectures</i><br> |
architectures</i><br> |
PF rules specifying address ranges (e.g. "10.1.1.1 - 10.1.1.5") were |
PF rules specifying address ranges (e.g. "10.1.1.1 - 10.1.1.5") were |
|
|
<p> |
<p> |
|
|
<li id="p008_openssl"> |
<li id="p008_openssl"> |
<font color="#009000"><strong>008: SECURITY FIX: February 11, 2011</strong></font> |
<strong>008: SECURITY FIX: February 11, 2011</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
An incorrectly formatted ClientHello handshake message could cause |
An incorrectly formatted ClientHello handshake message could cause |
OpenSSL to parse past the end of the message. An attacker could use this flaw |
OpenSSL to parse past the end of the message. An attacker could use this flaw |
|
|
<p> |
<p> |
|
|
<li id="p007_rtsock"> |
<li id="p007_rtsock"> |
<font color="#009000"><strong>007: RELIABILITY FIX: January 13, 2011</strong></font> |
<strong>007: RELIABILITY FIX: January 13, 2011</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
sp_protocol in RTM_DELETE messages could contain garbage values |
sp_protocol in RTM_DELETE messages could contain garbage values |
leading to routing socket users that restrict the AF (such as ospfd) |
leading to routing socket users that restrict the AF (such as ospfd) |
|
|
<p> |
<p> |
|
|
<li id="p006_cbc"> |
<li id="p006_cbc"> |
<font color="#009000"><strong>006: RELIABILITY FIX: December 17, 2010</strong></font> |
<strong>006: RELIABILITY FIX: December 17, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
This fixes aes-ni, via xcrypt and various drivers |
This fixes aes-ni, via xcrypt and various drivers |
|
|
<p> |
<p> |
|
|
<li id="p005_pf"> |
<li id="p005_pf"> |
<font color="#009000"><strong>005: SECURITY FIX: December 17, 2010</strong></font> |
<strong>005: SECURITY FIX: December 17, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Insufficent initialization of the pf rule structure in the ioctl |
Insufficent initialization of the pf rule structure in the ioctl |
handler may allow userland to modify kernel memory. By default root |
handler may allow userland to modify kernel memory. By default root |
|
|
<p> |
<p> |
|
|
<li id="p004_openssl"> |
<li id="p004_openssl"> |
<font color="#009000"><strong>004: RELIABILITY FIX: November 17, 2010</strong></font> |
<strong>004: RELIABILITY FIX: November 17, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded |
a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded |
|
|
<p> |
<p> |
|
|
<li id="p003_vr"> |
<li id="p003_vr"> |
<font color="#009000"><strong>003: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>003: RELIABILITY FIX: November 16, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/vr.4">vr(4)</a> |
The <a href="https://man.openbsd.org/OpenBSD-4.8/vr.4">vr(4)</a> |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
|
|
<p> |
<p> |
|
|
<li id="p002_pci"> |
<li id="p002_pci"> |
<font color="#009000"><strong>002: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>002: RELIABILITY FIX: November 16, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Certain PCI based hardware may improperly announce their Base Address |
Certain PCI based hardware may improperly announce their Base Address |
Registers as prefetchable even though they are not. This may cause |
Registers as prefetchable even though they are not. This may cause |
|
|
<p> |
<p> |
|
|
<li id="p001_bgpd"> |
<li id="p001_bgpd"> |
<font color="#009000"><strong>001: RELIABILITY FIX: November 16, 2010</strong></font> |
<strong>001: RELIABILITY FIX: November 16, 2010</strong> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Uninitialized memory may force the RDE into route-collector mode on startup and |
Uninitialized memory may force the RDE into route-collector mode on startup and |
may prevent bgpd from updating or announcing any routes. |
may prevent bgpd from updating or announcing any routes. |
|
|
</ul> |
</ul> |
|
|
<hr> |
<hr> |
|
|
</body> |
|
</html> |
|