version 1.36, 2017/03/28 04:04:52 |
version 1.37, 2017/03/28 06:41:18 |
|
|
<hr> |
<hr> |
|
|
<ul> |
<ul> |
<li id="010_sis"> |
<li id="p010_sis"> |
<font color="#009000"><strong>010: RELIABILITY FIX: February 16, 2011</strong></font> |
<font color="#009000"><strong>010: RELIABILITY FIX: February 16, 2011</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
The <a href="http://man.openbsd.org/?query=sis&sektion=4">sis(4)</a> |
The <a href="http://man.openbsd.org/OpenBSD-4.8/sis.4">sis(4)</a> |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
to re-order stores or if the hardware does store-reordering. |
to re-order stores or if the hardware does store-reordering. |
<br> |
<br> |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="009_pf"> |
<li id="p009_pf"> |
<font color="#009000"><strong>009: SECURITY FIX: February 16, 2011</strong></font> |
<font color="#009000"><strong>009: SECURITY FIX: February 16, 2011</strong></font> |
<i>Little-endian |
<i>Little-endian |
architectures</i><br> |
architectures</i><br> |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="008_openssl"> |
<li id="p008_openssl"> |
<font color="#009000"><strong>008: SECURITY FIX: February 11, 2011</strong></font> |
<font color="#009000"><strong>008: SECURITY FIX: February 11, 2011</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
An incorrectly formatted ClientHello handshake message could cause |
An incorrectly formatted ClientHello handshake message could cause |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="007_rtsock"> |
<li id="p007_rtsock"> |
<font color="#009000"><strong>007: RELIABILITY FIX: January 13, 2011</strong></font> |
<font color="#009000"><strong>007: RELIABILITY FIX: January 13, 2011</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
sp_protocol in RTM_DELETE messages could contain garbage values |
sp_protocol in RTM_DELETE messages could contain garbage values |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="006_cbc"> |
<li id="p006_cbc"> |
<font color="#009000"><strong>006: RELIABILITY FIX: December 17, 2010</strong></font> |
<font color="#009000"><strong>006: RELIABILITY FIX: December 17, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
Bring CBC oracle attack countermeasures to hardware crypto accelerator land. |
This fixes aes-ni, via xcrypt and various drivers |
This fixes aes-ni, via xcrypt and various drivers |
(<a href="http://man.openbsd.org/?query=glxsb&arch=i386&sektion=4">glxsb(4)</a>, |
(<a href="http://man.openbsd.org/OpenBSD-4.8/glxsb.4">glxsb(4)</a>, |
<a href="http://man.openbsd.org/?query=hifn&sektion=4">hifn(4)</a>, |
<a href="http://man.openbsd.org/OpenBSD-4.8/hifn.4">hifn(4)</a>, |
<a href="http://man.openbsd.org/?query=safe&sektion=4">safe(4)</a> |
<a href="http://man.openbsd.org/OpenBSD-4.8/safe.4">safe(4)</a> |
and |
and |
<a href="http://man.openbsd.org/?query=ubsec&sektion=4">ubsec(4)</a>). |
<a href="http://man.openbsd.org/OpenBSD-4.8/ubsec.4">ubsec(4)</a>). |
<br> |
<br> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/4.8/common/006_cbc.patch"> |
<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/4.8/common/006_cbc.patch"> |
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="005_pf"> |
<li id="p005_pf"> |
<font color="#009000"><strong>005: SECURITY FIX: December 17, 2010</strong></font> |
<font color="#009000"><strong>005: SECURITY FIX: December 17, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Insufficent initialization of the pf rule structure in the ioctl |
Insufficent initialization of the pf rule structure in the ioctl |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="004_openssl"> |
<li id="p004_openssl"> |
<font color="#009000"><strong>004: RELIABILITY FIX: November 17, 2010</strong></font> |
<font color="#009000"><strong>004: RELIABILITY FIX: November 17, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="003_vr"> |
<li id="p003_vr"> |
<font color="#009000"><strong>003: RELIABILITY FIX: November 16, 2010</strong></font> |
<font color="#009000"><strong>003: RELIABILITY FIX: November 16, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
The <a href="http://man.openbsd.org/?query=vr&sektion=4">vr(4)</a> |
The <a href="http://man.openbsd.org/OpenBSD-4.8/vr.4">vr(4)</a> |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
driver may hand over stale ring descriptors to the hardware if the compiler decides |
to re-order stores or if the hardware does store-reordering. |
to re-order stores or if the hardware does store-reordering. |
<br> |
<br> |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="002_pci"> |
<li id="p002_pci"> |
<font color="#009000"><strong>002: RELIABILITY FIX: November 16, 2010</strong></font> |
<font color="#009000"><strong>002: RELIABILITY FIX: November 16, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Certain PCI based hardware may improperly announce their Base Address |
Certain PCI based hardware may improperly announce their Base Address |
|
|
A source code patch exists which remedies this problem.</a> |
A source code patch exists which remedies this problem.</a> |
<p> |
<p> |
|
|
<li id="001_bgpd"> |
<li id="p001_bgpd"> |
<font color="#009000"><strong>001: RELIABILITY FIX: November 16, 2010</strong></font> |
<font color="#009000"><strong>001: RELIABILITY FIX: November 16, 2010</strong></font> |
<i>All architectures</i><br> |
<i>All architectures</i><br> |
Uninitialized memory may force the RDE into route-collector mode on startup and |
Uninitialized memory may force the RDE into route-collector mode on startup and |