-
-001: RELIABILITY FIX: October 13, 2017
+001: RELIABILITY FIX: October 13, 2017amd64
A local user could trigger a kernel panic by using an invalid TCB value.
@@ -105,8 +102,7 @@
-
-002: SECURITY FIX: December 1, 2017
+002: SECURITY FIX: December 1, 2017All architectures
The fktrace(2) system call had insufficient security checks.
@@ -116,8 +112,7 @@
-
-003: RELIABILITY FIX: December 10, 2017
+003: RELIABILITY FIX: December 10, 2017All architectures
A number of bugs were discovered in the MPLS stack that can be used to
@@ -128,8 +123,7 @@
-
-004: RELIABILITY FIX: January 14, 2018
+004: RELIABILITY FIX: January 14, 2018All architectures
An incorrect TLS extensions block is generated when no extensions are present,
@@ -140,8 +134,7 @@
-
-005: RELIABILITY FIX: February 2, 2018
+005: RELIABILITY FIX: February 2, 2018All architectures
Specially crafted IPsec AH packets with IP options or IPv6 extension
@@ -152,8 +145,7 @@
-
-006: RELIABILITY FIX: February 2, 2018
+006: RELIABILITY FIX: February 2, 2018All architectures
Processing IPv6 fragments could incorrectly access memory of an mbuf
@@ -164,8 +156,7 @@
-
-007: SECURITY FIX: February 2, 2018
+007: SECURITY FIX: February 2, 2018All architectures
If the EtherIP tunnel protocol was disabled, IPv6 packets were not
@@ -176,8 +167,7 @@
-
-008: SECURITY FIX: February 8, 2018
+008: SECURITY FIX: February 8, 2018All architectures
A flaw was found in the way unbound validated wildcard-synthesized
@@ -190,8 +180,7 @@
-
-009: SECURITY FIX: March 1, 2018
+009: SECURITY FIX: March 1, 2018amd64
Intel CPUs contain a speculative execution flaw called Meltdown which
@@ -202,8 +191,7 @@
-
-010: RELIABILITY FIX: March 20, 2018
+010: RELIABILITY FIX: March 20, 2018All architectures
The IPsec AH header could be longer than the network packet, resulting in
@@ -214,8 +202,7 @@
-
-011: SECURITY FIX: April 14, 2018
+011: SECURITY FIX: April 14, 2018All architectures
Heap overflows exist in perl which can lead to segmentation faults,
@@ -226,8 +213,7 @@
-
-012: RELIABILITY FIX: April 21, 2018
+012: RELIABILITY FIX: April 21, 2018All architectures
httpd can leak file descriptors when servicing range requests.
@@ -237,8 +223,7 @@
-
-013: RELIABILITY FIX: May 8, 2018
+013: RELIABILITY FIX: May 8, 2018All architectures
Incorrect handling of fragmented IPsec packets could result in a system crash.
@@ -248,8 +233,7 @@
-
-014: RELIABILITY FIX: May 17, 2018
+014: RELIABILITY FIX: May 17, 2018All architectures
A malicious packet can cause a kernel crash when using IPsec over IPv6.
@@ -259,8 +243,7 @@
-
-015: SECURITY FIX: June 14, 2018
+015: SECURITY FIX: June 14, 2018All architectures
DSA and ECDSA signature generation can potentially leak secret information
@@ -271,8 +254,7 @@
-
-016: SECURITY FIX: June 21, 2018
+016: SECURITY FIX: June 21, 2018All architectures
Perl's Archive::Tar module could be made to write files outside of
@@ -283,8 +265,7 @@
-
-017: SECURITY FIX: June 21, 2018
+017: SECURITY FIX: June 21, 2018amd64
Intel CPUs speculatively access FPU registers even when the FPU is disabled,
@@ -296,8 +277,7 @@
-
-018: RELIABILITY FIX: July 25, 2018
+018: RELIABILITY FIX: July 25, 2018All architectures
A regular user could trigger a kernel panic by executing an invalid
@@ -308,8 +288,7 @@
-
-019: SECURITY FIX: July 31, 2018
+019: SECURITY FIX: July 31, 2018amd64 and i386
On AMD CPUs, set a chicken bit which turns LFENCE into a serialization
@@ -320,8 +299,7 @@
-
-020: SECURITY FIX: July 31, 2018
+020: SECURITY FIX: July 31, 2018i386
IO port permissions were incorrectly restricted.
@@ -331,8 +309,7 @@
-
-021: RELIABILITY FIX: August 4, 2018
+021: RELIABILITY FIX: August 4, 2018amd64
Incorrect initialization of the FPU caused floating point exceptions
@@ -343,8 +320,7 @@
-
-022: SECURITY FIX: August 24, 2018
+022: SECURITY FIX: August 24, 2018amd64
State from the FPU of one userland process could be exposed to other processes.
@@ -354,8 +330,7 @@
-
-023: SECURITY FIX: August 24, 2018
+023: SECURITY FIX: August 24, 2018amd64
The Intel L1TF bug allows a vmm guest to read host memory.
@@ -366,8 +341,7 @@
-
-024: SECURITY FIX: September 21, 2018
+024: SECURITY FIX: September 21, 2018amd64
On AMD CPUs, LDTR must be managed crossing between VMs.
@@ -379,6 +353,3 @@