Return to errata50.html CVS log | Up to [local] / www |
version 1.26, 2016/08/15 02:22:06 | version 1.27, 2016/10/16 19:11:30 | ||
---|---|---|---|
|
|
||
<br> | <br> | ||
<hr> | <hr> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.0.tar.gz"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.0.tar.gz"> | ||
You can also fetch a tar.gz file containing all the following patches</a>. | You can also fetch a tar.gz file containing all the following patches</a>. | ||
This file is updated once a day. | This file is updated once a day. | ||
<p> | <p> | ||
|
|
||
An unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent | An unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent | ||
queries for which could crash the resolvers with an assertion failure. | queries for which could crash the resolvers with an assertion failure. | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.0/common/001_bind.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.0/common/001_bind.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||
|
|
||
A heap overflow vulnerability has been found in libcrypto's ASN.1 parsing code | A heap overflow vulnerability has been found in libcrypto's ASN.1 parsing code | ||
(<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2110">CVE-2012-2110</a>). | (<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2110">CVE-2012-2110</a>). | ||
<br> | <br> | ||
<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.0/common/002_libcrypto.patch"> | <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.0/common/002_libcrypto.patch"> | ||
A source code patch exists which remedies this problem.</a> | A source code patch exists which remedies this problem.</a> | ||
<p> | <p> | ||