www/errata55.html - diff

Return to errata55.html CVS log

Up to [local] / www

Diff for /www/errata55.html between version 1.52 and 1.53

version 1.52, 2017/03/28 04:04:52

version 1.53, 2017/03/28 06:41:18

Line 72

Patches for the OpenBSD base system are distributed as unified diffs.

Each patch is cryptographically signed with the

<a href="http://man.openbsd.org/signify">signify(1)</a> tool and contains

<a href="http://man.openbsd.org/OpenBSD-5.5/signify.1">signify(1)</a> tool and contains

usage instructions.

All the following patches are also available in one

Line 86

<ul>

001: RELIABILITY FIX: March 15, 2014

All architectures

Memory corruption happens during

Line 96

A source code patch exists which remedies this problem.</a>

002: SECURITY FIX: April 8, 2014

All architectures

Missing bounds checking in OpenSSL's implementation of the TLS/DTLS

Line 106

A source code patch exists which remedies this problem.</a>

003: SECURITY FIX: April 9, 2014

All architectures

Missing hostname check for HTTPS connections in the

utility.

A source code patch exists which remedies this problem.</a>

004: SECURITY FIX: April 12, 2014

All architectures

A use-after-free race condition in OpenSSL's read buffer may permit an attacker

Line 127

A source code patch exists which remedies this problem.</a>

005: RELIABILITY FIX: May 1, 2014

All architectures

An attacker can trigger generation of an SSL alert which could cause

Line 137

A source code patch exists which remedies this problem.</a>

006: SECURITY FIX: May 24, 2014

All architectures with X server

X Font Service Protocol & Font metadata file handling issues in libXfont

Line 152

A source code patch exists which remedies this problem.</a>

007: SECURITY FIX: June 5, 2014

All architectures

Sendmail was not properly closing file descriptions before executing programs.

Line 163

A source code patch exists which remedies this problem.</a>

008: SECURITY FIX: June 6, 2014

All architectures

This patch contains a number of SSL library fixes.

Line 172

A source code patch exists which remedies this problem.</a>

009: RELIABILITY FIX: July 30, 2014

All architectures

Packets with illegal DHCP options can lead to memory exhaustion of

<a href="http://man.openbsd.org/?query=dhclient&sektion=8">dhclient(8)</a>

<a href="http://man.openbsd.org/OpenBSD-5.5/dhclient.8">dhclient(8)</a>

and

<a href="http://man.openbsd.org/?query=dhcpd&sektion=8">dhcpd(8)</a>.

<a href="http://man.openbsd.org/OpenBSD-5.5/dhcpd.8">dhcpd(8)</a>.

A source code patch exists which remedies this problem.</a>

010: SECURITY FIX: August 9, 2014

All architectures

This patch contains a number of SSL library fixes.

Line 193

A source code patch exists which remedies this problem.</a>

011: SECURITY FIX: October 1, 2014

All architectures

nginx can reuse cached SSL sessions in unrelated contexts, allowing virtual

Line 204

A source code patch exists which remedies this problem.</a>

012: RELIABILITY FIX: October 20, 2014

All architectures

Two remotely triggerable memory leaks in OpenSSL can lead to a denial of

Line 214

A source code patch exists which remedies this problem.</a>

013: RELIABILITY FIX: October 20, 2014

All architectures

Executable headers with an unaligned address will trigger a kernel panic.

Line 223

A source code patch exists which remedies this problem.</a>

014: RELIABILITY FIX: November 17, 2014

All architectures

A PF rule using an IPv4 address

Line 235

A source code patch exists which remedies this problem.</a>

015: RELIABILITY FIX: November 17, 2014

All architectures

Querying an invalid hostname with gethostbyname(3) could cause a NULL deref.

Line 244

A source code patch exists which remedies this problem.</a>

016: RELIABILITY FIX: December 5, 2014

All architectures

Several bugs were fixed that allowed a crash from remote when an active pipex

Line 254

A source code patch exists which remedies this problem.</a>

017: RELIABILITY FIX: December 5, 2014

All architectures

An incorrect memcpy call would result in corrupted MAC addresses when

Line 264

A source code patch exists which remedies this problem.</a>

018: RELIABILITY FIX: December 9, 2014

All architectures

Several bugs in virtio(4) can lead to hangs with virtio devices,

Line 274

A source code patch exists which remedies this problem.</a>

019: SECURITY FIX: December 9, 2014

All architectures

One year after Ilja van Sprundel discovered and reported a large number

Line 287

A source code patch exists which remedies this problem.</a>

020: SECURITY FIX: January 13, 2015

All architectures

Fix CVE-2014-6272 in libevent 1.4 event buffer handling. OpenBSD

Line 300

A source code patch exists which remedies this problem.</a>

021: SECURITY FIX: March 3, 2015

All architectures

Information leak in the XkbSetGeometry request of X servers.

Line 312

A source code patch exists which remedies this problem.</a>

022: SECURITY FIX: March 13, 2015

All architectures

Another fix for buffer overflows in malformed fonts.

Line 321

A source code patch exists which remedies this problem.</a>

023: SECURITY FIX: March 18, 2015

All architectures

Buffer overflows in libXfont

Line 334

Note that the instructions should read <code>cd /usr/xenocara/lib/libXfont</code>.

024: SECURITY FIX: March 19, 2015

All architectures

Fix two possible crash causing defects.

Line 349

Note that instructions should read <code>cd /usr/src/lib/libssl/crypto</code>.

025: RELIABILITY FIX: April 17, 2015

All architectures

Fix a logic error in smtpd handling of SNI.