[BACK]Return to errata60.html CVS log [TXT][DIR] Up to [local] / www

Annotation of www/errata60.html, Revision 1.13

1.1       deraadt     1: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
                      2: <html>
                      3: <head>
                      4: <title>OpenBSD 6.0 Errata</title>
                      5: <meta name="description" content="the OpenBSD CD errata page">
                      6: <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
                      7: <meta name="viewport" content="width=device-width, initial-scale=1">
                      8: <link rel="stylesheet" type="text/css" href="openbsd.css">
1.4       tb          9: <link rel="canonical" href="https://www.openbsd.org/errata59.html">
1.1       deraadt    10: </head>
                     11:
                     12: <!--
                     13:                        IMPORTANT REMINDER
                     14:        IF YOU ADD A NEW ERRATUM, MAIL THE PATCH TO TECH AND ANNOUNCE
                     15: -->
                     16: <body bgcolor="#ffffff" text="#000000" link="#23238E">
                     17:
                     18: <h2>
                     19: <a href="index.html">
                     20: <font color="#0000ff"><i>Open</i></font><font color="#000084">BSD</font></a>
                     21: <font color="#e00000">6.0 Errata</font>
                     22: </h2>
                     23: <hr>
                     24:
                     25: <a href=stable.html>For OpenBSD patch branch information, please refer here.</a><br>
                     26: <br>
                     27: For errata on a certain release, click below:<br>
                     28: <a href="errata21.html">2.1</a>,
                     29: <a href="errata22.html">2.2</a>,
                     30: <a href="errata23.html">2.3</a>,
                     31: <a href="errata24.html">2.4</a>,
                     32: <a href="errata25.html">2.5</a>,
                     33: <a href="errata26.html">2.6</a>,
                     34: <a href="errata27.html">2.7</a>,
                     35: <a href="errata28.html">2.8</a>,
                     36: <a href="errata29.html">2.9</a>,
                     37: <a href="errata30.html">3.0</a>,
                     38: <a href="errata31.html">3.1</a>,
                     39: <a href="errata32.html">3.2</a>,
                     40: <a href="errata33.html">3.3</a>,
                     41: <a href="errata34.html">3.4</a>,
                     42: <a href="errata35.html">3.5</a>,
                     43: <a href="errata36.html">3.6</a>,
                     44: <br>
                     45: <a href="errata37.html">3.7</a>,
                     46: <a href="errata38.html">3.8</a>,
                     47: <a href="errata39.html">3.9</a>,
                     48: <a href="errata40.html">4.0</a>,
                     49: <a href="errata41.html">4.1</a>,
                     50: <a href="errata42.html">4.2</a>,
                     51: <a href="errata43.html">4.3</a>,
                     52: <a href="errata44.html">4.4</a>,
                     53: <a href="errata45.html">4.5</a>,
                     54: <a href="errata46.html">4.6</a>,
                     55: <a href="errata47.html">4.7</a>,
                     56: <a href="errata48.html">4.8</a>,
                     57: <a href="errata49.html">4.9</a>,
                     58: <a href="errata50.html">5.0</a>,
                     59: <a href="errata51.html">5.1</a>,
                     60: <a href="errata52.html">5.2</a>,
                     61: <br>
                     62: <a href="errata53.html">5.3</a>,
                     63: <a href="errata54.html">5.4</a>,
                     64: <a href="errata55.html">5.5</a>,
                     65: <a href="errata56.html">5.6</a>,
                     66: <a href="errata57.html">5.7</a>,
                     67: <a href="errata58.html">5.8</a>,
                     68: <a href="errata59.html">5.9</a>.
                     69: <br>
                     70: <hr>
                     71:
                     72: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0.tar.gz">
                     73: You can also fetch a tar.gz file containing all the following patches</a>.
                     74: This file is updated once a day.
                     75: <p>
                     76:
                     77: The patches below are available in CVS via the
                     78: <code>OPENBSD_6_0</code> <a href="stable.html">patch branch</a>.
                     79: <p>
                     80:
                     81: For more detailed information on how to install patches to OpenBSD, please
                     82: consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>.
                     83: <p>
                     84:
                     85: <hr>
                     86:
                     87: <ul>
                     88:
1.2       tj         89: <li id="001_uvmisavail">
                     90: <font color="#009000">
                     91: <strong>001: RELIABILITY FIX: August 2, 2016</strong></font>
                     92: &nbsp; <i>All architectures</i>
                     93: <br>
                     94: Missing overflow checks in uvm may result in panics.
                     95: <br>
                     96: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/001_uvmisavail.patch.sig">
                     97: A source code patch exists which remedies this problem.</a>
                     98: <p>
1.1       deraadt    99:
1.3       tj        100: <li id="002_perl">
                    101: <font color="#009000">
                    102: <strong>002: RELIABILITY FIX: August 6, 2016</strong></font>
                    103: &nbsp; <i>All architectures</i>
                    104: <br>
                    105: Fixes IO::Socket::IP complaining about non-numeric version numbers.
                    106: <br>
                    107: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/002_perl.patch.sig">
                    108: A source code patch exists which remedies this problem.</a>
                    109: <p>
                    110:
                    111: <li id="003_relayd">
                    112: <font color="#009000">
                    113: <strong>003: RELIABILITY FIX: August 6, 2016</strong></font>
                    114: &nbsp; <i>All architectures</i>
                    115: <br>
                    116: Improve relayd's parsing of the Host-header by following RFC 7230
                    117: Section 5.4 more strictly.
                    118: <br>
                    119: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/003_relayd.patch.sig">
                    120: A source code patch exists which remedies this problem.</a>
                    121: <p>
                    122:
1.5       tj        123: <li id="004_smtpd">
                    124: <font color="#009000">
                    125: <strong>004: RELIABILITY FIX: August 23, 2016</strong></font>
                    126: &nbsp; <i>All architectures</i>
                    127: <br>
                    128: A missing initialization can prevent mail headers from being altered as
                    129: intended, resulting in mail being sent to incorrect addresses.
                    130: <br>
                    131: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/004_smtpd.patch.sig">
                    132: A source code patch exists which remedies this problem.</a>
                    133: <p>
                    134:
1.6       tj        135: <li id="005_wsfont">
                    136: <font color="#009000">
                    137: <strong>005: RELIABILITY FIX: September 17, 2016</strong></font>
                    138: &nbsp; <i>All architectures</i>
                    139: <br>
                    140: Limit the number of wscons fonts that can be loaded into the kernel.
                    141: <br>
                    142: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/005_wsfont.patch.sig">
                    143: A source code patch exists which remedies this problem.</a>
                    144: <p>
                    145:
1.7       benno     146: <li id="006_iked">
                    147: <font color="#009000">
                    148: <strong>006: RELIABILITY FIX: September 17, 2016</strong></font>
                    149: &nbsp; <i>All architectures</i>
                    150: <br>
                    151: During parsing of the iked(8) configuration, a variable is set to 0
                    152: by mistake, disabling Pre-Shared Key authentication.
                    153: <br>
                    154: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/006_iked.patch.sig">
                    155: A source code patch exists which remedies this problem.</a>
                    156: <p>
                    157:
1.8       tj        158: <li id="007_libcrypto">
                    159: <font color="#009000">
                    160: <strong>007: RELIABILITY FIX: September 22, 2016</strong></font>
                    161: &nbsp; <i>All architectures</i>
                    162: <br>
                    163: Revert change that cleans up the EVP cipher context in EVP_EncryptFinal()
                    164: and EVP_DecryptFinal(). Some software relies on the previous behaviour.
                    165: <br>
                    166: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/007_libcrypto.patch.sig">
                    167: A source code patch exists which remedies this problem.</a>
                    168: <p>
                    169:
                    170: <li id="008_libssl">
                    171: <font color="#009000">
                    172: <strong>008: RELIABILITY FIX: September 22, 2016</strong></font>
                    173: &nbsp; <i>All architectures</i>
                    174: <br>
                    175: Avoid unbounded memory growth in libssl, which can be triggered by a TLS
                    176: client repeatedly renegotiating and sending OCSP Status Request TLS extensions.
                    177: <br>
                    178: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/008_libssl.patch.sig">
                    179: A source code patch exists which remedies this problem.</a>
                    180: <p>
                    181:
                    182: <li id="009_libssl">
                    183: <font color="#009000">
                    184: <strong>009: SECURITY FIX: September 22, 2016</strong></font>
                    185: &nbsp; <i>All architectures</i>
                    186: <br>
                    187: Avoid falling back to a weak digest for (EC)DH when using SNI with libssl.
                    188: <br>
                    189: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/009_libssl.patch.sig">
                    190: A source code patch exists which remedies this problem.</a>
                    191: <p>
                    192:
1.9       tj        193: <li id="010_smtpd">
                    194: <font color="#009000">
                    195: <strong>010: RELIABILITY FIX: October 3, 2016</strong></font>
                    196: &nbsp; <i>All architectures</i>
                    197: <br>
                    198: A bug in the smtp session logic can lead to a server crash.
                    199: <br>
                    200: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/010_smtpd.patch.sig">
                    201: A source code patch exists which remedies this problem.</a>
                    202: <p>
                    203:
1.10      tj        204: <li id="011_xorg_libs">
                    205: <font color="#009000">
                    206: <strong>011: SECURITY FIX: October 4, 2016</strong></font>
                    207: &nbsp; <i>All architectures</i>
                    208: <br>
                    209: Fix a number of issues in the way various X client libraries handle
                    210: server responses.
                    211: <br>
                    212: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/011_xorg_libs.patch.sig">
                    213: A source code patch exists which remedies this problem.</a>
                    214: <p>
                    215:
1.11      deraadt   216: <li id="012_amap">
                    217: <font color="#009000">
1.12      tj        218: <strong>012: RELIABILITY FIX: October 8, 2016</strong></font>
1.11      deraadt   219: &nbsp; <i>All architectures</i>
                    220: <br>
                    221: Allocation of an amap with at least 131072 slots causes an integer overflow
                    222: that leads to an infinite loop.
                    223: <br>
                    224: <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/012_amap.patch.sig">
1.12      tj        225: A source code patch exists which remedies this problem.</a>
                    226: <p>
                    227:
                    228: <li id="013_ssh_kexinit">
                    229: <font color="#009000">
                    230: <strong>013: RELIABILITY FIX: October 10, 2016</strong></font>
                    231: &nbsp; <i>All architectures</i>
                    232: <br>
                    233: A protocol parsing bug in sshd can lead to unauthenticated memory
                    234: and CPU consumption.
                    235: <br>
                    236: <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/013_ssh_kexinit.patch.sig">
1.11      deraadt   237: A source code patch exists which remedies this problem.</a>
                    238: <p>
                    239:
1.13    ! tj        240: <li id="014_smtpd.patch">
        !           241: <font color="#009000">
        !           242: <strong>014: RELIABILITY FIX: October 13, 2016</strong></font>
        !           243: &nbsp; <i>All architectures</i>
        !           244: <br>
        !           245: A logic issue in smtpd's header parsing can cause SMTP sessions to hang.
        !           246: <br>
        !           247: <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.0/common/014_smtpd.patch.sig">
        !           248: A source code patch exists which remedies this problem.</a>
        !           249: <p>
        !           250:
1.1       deraadt   251: </ul>
                    252:
                    253: <hr>
                    254:
                    255: </body>
                    256: </html>