For 2.8 security advisories.
For 2.7 security advisories.
For 2.6 security advisories.
*************** *** 182,187 **** --- 183,202 ----
OpenBSD 2.9 Security Advisories
+ These are the OpenBSD 2.9 advisories -- all these problems are solved + in OpenBSD current and the + patch branch. + ++
-
+
- None yet. +
+
OpenBSD 2.8 Security Advisories
*************** *** 191,223 ****
-
!
- Apr 23, 2001: IPF contains a serious bug with its handling of fragment cacheing. !
- Apr 23, 2001: ftpd(8) contains a potential DoS relating to glob(3). !
- Apr 10, 2001: The glob(3) library call contains multiple buffer overflows. !
- Mar 18, 2001: The readline library creates history files with permissive modes based on the user's umask. !
- Mar 2, 2001: Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel. !
- Mar 2, 2001: The USER_LDT kernel option allows an attacker to gain access to privileged areas of kernel memory. !
- Feb 22, 2001: a non-exploitable buffer overflow was fixed in sudo(8). !
- Jan 29, 2001: merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities. !
- Jan 22, 2001: rnd(4) did not use all of its input when written to. !
- Dec 22, 2000: xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included). !
- Dec 18, 2000: Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included). !
- Dec 10, 2000: Another problem exists in KerberosIV libraries (patch included). !
- Dec 7, 2000: A set of problems in KerberosIV exist (patch included). !
- Dec 4, 2000: A single-byte buffer overflow exists in ftpd (patch included).
-
!
- Apr 23, 2001: IPF contains a serious bug with its handling of fragment cacheing. !
- Apr 23, 2001: ftpd(8) contains a potential DoS relating to glob(3). !
- Apr 10, 2001: The glob(3) library call contains multiple buffer overflows. !
- Mar 18, 2001: The readline library creates history files with permissive modes based on the user's umask. !
- Mar 2, 2001: Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel. !
- Mar 2, 2001: The USER_LDT kernel option allows an attacker to gain access to privileged areas of kernel memory. !
- Feb 22, 2001: a non-exploitable buffer overflow was fixed in sudo(8). !
- Jan 29, 2001: merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities. !
- Jan 22, 2001: rnd(4) did not use all of its input when written to. !
- Dec 22, 2000: xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included). !
- Dec 18, 2000: Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included). !
- Dec 10, 2000: Another problem exists in KerberosIV libraries (patch included). !
- Dec 7, 2000: A set of problems in KerberosIV exist (patch included). !
- Dec 4, 2000: A single-byte buffer overflow exists in ftpd (patch included).
www@openbsd.org
! $OpenBSD: security.html,v 1.172 2001/04/23 22:12:17 ericj Exp $