www/errata59.html - diff

Return to errata59.html CVS log

Up to [local] / www

Diff for /www/errata59.html between version 1.46 and 1.47

version 1.46, 2019/04/02 12:46:57

version 1.47, 2019/05/27 22:55:20

Line 1

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<!doctype html>

<html>

<head>

<title>OpenBSD 5.9 Errata</title>

</head>

<!--

IMPORTANT REMINDER

IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE

-->

<h2>

OpenBSD</a>

OpenBSD</a>

5.9 Errata

5.9 Errata

</h2>

<hr>

Line 89

Line 87

<ul>

001: SECURITY FIX: March 10, 2016

001: SECURITY FIX: March 10, 2016

All architectures

Lack of credential sanitization allows injection of commands to xauth(1).</a>

Line 102

Line 100

002: SECURITY FIX: March 16, 2016

002: SECURITY FIX: March 16, 2016

All architectures

Insufficient checks in IPv6 socket binding and UDP IPv6 option

processing allow a local user to send UDP packets with a source

Line 113

Line 111

003: RELIABILITY FIX: March 16, 2016

003: RELIABILITY FIX: March 16, 2016

All architectures

Incorrect path processing in pledge_namei() could result in unexpected

program termination of pledge(2)'d programs.

Line 123

Line 121

004: RELIABILITY FIX: April 30, 2016

004: RELIABILITY FIX: April 30, 2016

All architectures

A problem in m_dup_pkt() can result in kernel crashes with carp(4).

Line 132

Line 130

005: SECURITY FIX: May 3, 2016

005: SECURITY FIX: May 3, 2016

All architectures

Fix issues in the libcrypto library.

Refer to <a href="https://www.openssl.org/news/secadv/20160503.txt">the advisory</a>.

Line 148

Line 146

006: RELIABILITY FIX: May 16, 2016

006: RELIABILITY FIX: May 16, 2016

All architectures

Fix issues in smtpd.

<ul>

Line 160

Line 158

007: SECURITY FIX: May 17, 2016

007: SECURITY FIX: May 17, 2016

All architectures

Insufficient checks in the uvideo(4) V4L2 ioctl handling leak kernel

memory contents to a local user.

Line 170

Line 168

008: RELIABILITY FIX: May 18, 2016

008: RELIABILITY FIX: May 18, 2016

All architectures

Fix issue in the bnx(4) ethernet driver that could cause data corruption.

Line 179

Line 177

009: RELIABILITY FIX: May 29, 2016

009: RELIABILITY FIX: May 29, 2016

All architectures

Fix a bug in the libcrypto library when parsing certain ASN.1 elements.

Line 188

Line 186

010: SECURITY FIX: June 2, 2016

010: SECURITY FIX: June 2, 2016

All architectures

Fix issues in the libexpat library to prevent multiple integer and

buffer overflows.

Line 198

Line 196

011: SECURITY FIX: June 6, 2016

011: SECURITY FIX: June 6, 2016

All architectures

Correct a problem that prevents the DSA signing algorithm from running

in constant time even if the flag BN_FLG_CONSTTIME is set.

Line 208

Line 206

012: SECURITY FIX: June 27, 2016

012: SECURITY FIX: June 27, 2016

All architectures

Correct a problem that could result in incorrect parsing/encoding of times in OCSP messages.

Line 217

Line 215

013: RELIABILITY FIX: July 14, 2016

013: RELIABILITY FIX: July 14, 2016

All architectures

Splicing sockets in a loop could cause a kernel spin.

Line 226

Line 224

014: RELIABILITY FIX: July 14, 2016

014: RELIABILITY FIX: July 14, 2016

All architectures

Multiple processes exiting with a fd-passing control message on a

shared socket could crash the system.

Line 236

Line 234

015: RELIABILITY FIX: July 14, 2016

015: RELIABILITY FIX: July 14, 2016

All architectures

ufs_readdir failed to limit size of memory allocation, leading to panics.

Line 245

Line 243

016: SECURITY FIX: July 14, 2016

016: SECURITY FIX: July 14, 2016

All architectures

The mmap extension __MAP_NOFAULT could overcommit resources and crash

the system.

Line 255

Line 253

017: RELIABILITY FIX: July 14, 2016

017: RELIABILITY FIX: July 14, 2016

All architectures

A race occuring in the unlocked ARP input path can lead to a kernel

NULL dereference.

Line 265

Line 263

018: RELIABILITY FIX: July 14, 2016

018: RELIABILITY FIX: July 14, 2016

All architectures

Tick counting overflows could cause a kernel crash.

Line 274

Line 272

019: RELIABILITY FIX: July 14, 2016

019: RELIABILITY FIX: July 14, 2016

All architectures

Invalid file descriptor use with kevent(2) could lead to a kernel crash.

Line 283

Line 281

020: RELIABILITY FIX: July 14, 2016

020: RELIABILITY FIX: July 14, 2016

All architectures

Unchecked parameters and integer overflows in the amap allocation routines

could cause malloc(9) to either not allocate enough memory, leading to memory

Line 294

Line 292

021: RELIABILITY FIX: July 25, 2016

021: RELIABILITY FIX: July 25, 2016

All architectures

When signaling an error to an HTTP relay client, the connection can be

terminated prematurely, leading to a crash.

Line 304

Line 302

022: RELIABILITY FIX: August 2, 2016

022: RELIABILITY FIX: August 2, 2016

All architectures

A missing NULL check in sysctl code results in a crash.

Line 315

Line 312

023: RELIABILITY FIX: August 2, 2016

023: RELIABILITY FIX: August 2, 2016

All architectures

Missing overflow checks in uvm may result in panics.

Line 326

Line 322

024: SECURITY FIX: August 6, 2016

024: SECURITY FIX: August 6, 2016

All architectures

Don't look in the current working directory for perl modules to load.

Line 339

Line 334

025: RELIABILITY FIX: August 6, 2016

025: RELIABILITY FIX: August 6, 2016

All architectures

Improve relayd's parsing of the Host-header by following RFC 7230

Line 351

Line 345

026: RELIABILITY FIX: September 17, 2016

026: RELIABILITY FIX: September 17, 2016

All architectures

Limit the number of wscons fonts that can be loaded into the kernel.

Line 362

Line 355

027: RELIABILITY FIX: September 22, 2016

027: RELIABILITY FIX: September 22, 2016

All architectures

Avoid unbounded memory growth in libssl, which can be triggered by a TLS

Line 374

Line 366

028: SECURITY FIX: September 22, 2016

028: SECURITY FIX: September 22, 2016

All architectures

Avoid falling back to a weak digest for (EC)DH when using SNI with libssl.

Line 385

Line 376

029: SECURITY FIX: October 4, 2016

029: SECURITY FIX: October 4, 2016

All architectures

Fix a number of issues in the way various X client libraries handle

Line 397

Line 387

030: RELIABILITY FIX: October 10, 2016

030: RELIABILITY FIX: October 10, 2016

All architectures

A protocol parsing bug in sshd can lead to unauthenticated memory

Line 409

Line 398

031: RELIABILITY FIX: October 13, 2016

031: RELIABILITY FIX: October 13, 2016

All architectures

A logic issue in smtpd's header parsing can cause SMTP sessions to hang.

Line 420

Line 408

032: RELIABILITY FIX: November 5, 2016

032: RELIABILITY FIX: November 5, 2016

All architectures

Avoid continual processing of an unlimited number of TLS records.

Line 431

Line 418

033: SECURITY FIX: January 5, 2017

033: SECURITY FIX: January 5, 2017

All architectures

Avoid possible side-channel leak of ECDSA private keys when signing.

Line 442

Line 428

034: RELIABILITY FIX: January 31, 2017

034: RELIABILITY FIX: January 31, 2017

All architectures

A bug in the processing of range heanders in httpd can lead to memory

Line 455

Line 440

035: SECURITY FIX: March 1, 2017

035: SECURITY FIX: March 1, 2017

All architectures

WiFi clients using WPA1 or WPA2 are vulnerable to a man-in-the-middle attack

Line 467

Line 451

036: RELIABILITY FIX: March 9, 2017

036: RELIABILITY FIX: March 9, 2017

All architectures

Prevent integer overflow in PF when calculating the adaptive timeout,

Line 479

Line 462

037: SECURITY FIX: March 20, 2017

037: SECURITY FIX: March 20, 2017

All architectures

ELF auxiliary vector storage leaks piece of kernel stack.

Line 492

Line 474

</ul>

<hr>

</body>

</html>