===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.172
retrieving revision 1.173
diff -c -r1.172 -r1.173
*** www/security.html 2001/04/23 22:12:17 1.172
--- www/security.html 2001/04/24 06:59:18 1.173
***************
*** 35,40 ****
--- 35,41 ----
+ For 2.9 security advisories.
For 2.8 security advisories.
For 2.7 security advisories.
For 2.6 security advisories.
***************
*** 182,187 ****
--- 183,202 ----
+
+
+ OpenBSD 2.9 Security Advisories
+ These are the OpenBSD 2.9 advisories -- all these problems are solved
+ in OpenBSD current and the
+ patch branch.
+
+
+
+
+
+
OpenBSD 2.8 Security Advisories
***************
*** 191,223 ****
! - Apr 23, 2001:
IPF contains a serious bug with its handling of fragment cacheing.
!
- Apr 23, 2001:
ftpd(8) contains a potential DoS relating to glob(3).
!
- Apr 10, 2001:
The glob(3) library call contains multiple buffer overflows.
!
- Mar 18, 2001:
The readline library creates history files with permissive modes based on the user's umask.
!
- Mar 2, 2001:
Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel.
!
- Mar 2, 2001:
The USER_LDT kernel option allows an attacker to gain access to privileged areas of kernel memory.
!
- Feb 22, 2001:
a non-exploitable buffer overflow was fixed in sudo(8).
!
- Jan 29, 2001:
merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities.
!
- Jan 22, 2001:
rnd(4) did not use all of its input when written to.
!
- Dec 22, 2000:
xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included).
!
- Dec 18, 2000:
Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included).
!
- Dec 10, 2000:
Another problem exists in KerberosIV libraries (patch included).
!
- Dec 7, 2000:
A set of problems in KerberosIV exist (patch included).
!
- Dec 4, 2000:
A single-byte buffer overflow exists in ftpd (patch included).
--- 206,238 ----
! - Apr 23, 2001:
IPF contains a serious bug with its handling of fragment cacheing.
!
- Apr 23, 2001:
ftpd(8) contains a potential DoS relating to glob(3).
!
- Apr 10, 2001:
The glob(3) library call contains multiple buffer overflows.
!
- Mar 18, 2001:
The readline library creates history files with permissive modes based on the user's umask.
!
- Mar 2, 2001:
Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel.
!
- Mar 2, 2001:
The USER_LDT kernel option allows an attacker to gain access to privileged areas of kernel memory.
!
- Feb 22, 2001:
a non-exploitable buffer overflow was fixed in sudo(8).
!
- Jan 29, 2001:
merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities.
!
- Jan 22, 2001:
rnd(4) did not use all of its input when written to.
!
- Dec 22, 2000:
xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included).
!
- Dec 18, 2000:
Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included).
!
- Dec 10, 2000:
Another problem exists in KerberosIV libraries (patch included).
!
- Dec 7, 2000:
A set of problems in KerberosIV exist (patch included).
!
- Dec 4, 2000:
A single-byte buffer overflow exists in ftpd (patch included).
***************
*** 655,661 ****
www@openbsd.org
! $OpenBSD: security.html,v 1.172 2001/04/23 22:12:17 ericj Exp $
|