! 010: RELIABILITY FIX: February 16, 2011All architectures
The sis(4)
driver may hand over stale ring descriptors to the hardware if the compiler decides
--- 85,91 ----
! 010: RELIABILITY FIX: February 16, 2011All architectures
The sis(4)
driver may hand over stale ring descriptors to the hardware if the compiler decides
***************
*** 98,104 ****
! 008: SECURITY FIX: February 11, 2011All architectures
An incorrectly formatted ClientHello handshake message could cause
OpenSSL to parse past the end of the message. An attacker could use this flaw
--- 109,115 ----
! 008: SECURITY FIX: February 11, 2011All architectures
An incorrectly formatted ClientHello handshake message could cause
OpenSSL to parse past the end of the message. An attacker could use this flaw
***************
*** 129,135 ****
! 007: RELIABILITY FIX: January 13, 2011All architectures
sp_protocol in RTM_DELETE messages could contain garbage values
leading to routing socket users that restrict the AF (such as ospfd)
--- 127,133 ----
! 007: RELIABILITY FIX: January 13, 2011All architectures
sp_protocol in RTM_DELETE messages could contain garbage values
leading to routing socket users that restrict the AF (such as ospfd)
***************
*** 140,146 ****
! 006: RELIABILITY FIX: December 17, 2010All architectures
Bring CBC oracle attack countermeasures to hardware crypto accelerator land.
This fixes aes-ni, via xcrypt and various drivers
--- 138,144 ----
! 006: RELIABILITY FIX: December 17, 2010All architectures
Bring CBC oracle attack countermeasures to hardware crypto accelerator land.
This fixes aes-ni, via xcrypt and various drivers
***************
*** 155,161 ****
! 005: SECURITY FIX: December 17, 2010All architectures
Insufficent initialization of the pf rule structure in the ioctl
handler may allow userland to modify kernel memory. By default root
--- 153,159 ----
! 005: SECURITY FIX: December 17, 2010All architectures
Insufficent initialization of the pf rule structure in the ioctl
handler may allow userland to modify kernel memory. By default root
***************
*** 166,172 ****
! 004: RELIABILITY FIX: November 17, 2010All architectures
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to
a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded
--- 164,170 ----
! 004: RELIABILITY FIX: November 17, 2010All architectures
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to
a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded
***************
*** 178,184 ****
! 003: RELIABILITY FIX: November 16, 2010All architectures
The vr(4)
driver may hand over stale ring descriptors to the hardware if the compiler decides
--- 176,182 ----
! 003: RELIABILITY FIX: November 16, 2010All architectures
The vr(4)
driver may hand over stale ring descriptors to the hardware if the compiler decides
***************
*** 189,195 ****
! 002: RELIABILITY FIX: November 16, 2010All architectures
Certain PCI based hardware may improperly announce their Base Address
Registers as prefetchable even though they are not. This may cause
--- 187,193 ----
! 002: RELIABILITY FIX: November 16, 2010All architectures
Certain PCI based hardware may improperly announce their Base Address
Registers as prefetchable even though they are not. This may cause
***************
*** 200,206 ****
! 001: RELIABILITY FIX: November 16, 2010All architectures
Uninitialized memory may force the RDE into route-collector mode on startup and
may prevent bgpd from updating or announcing any routes.
--- 198,204 ----
! 001: RELIABILITY FIX: November 16, 2010All architectures
Uninitialized memory may force the RDE into route-collector mode on startup and
may prevent bgpd from updating or announcing any routes.
***************
*** 212,217 ****