version 1.172, 2001/04/23 22:12:17 |
version 1.173, 2001/04/24 06:59:18 |
|
|
<p> |
<p> |
</td> |
</td> |
<td valign="top"> |
<td valign="top"> |
|
<a href="#29">For 2.9 security advisories</a>.<br> |
<a href="#28">For 2.8 security advisories</a>.<br> |
<a href="#28">For 2.8 security advisories</a>.<br> |
<a href="#27">For 2.7 security advisories</a>.<br> |
<a href="#27">For 2.7 security advisories</a>.<br> |
<a href="#26">For 2.6 security advisories</a>.<br> |
<a href="#26">For 2.6 security advisories</a>.<br> |
|
|
<dl> |
<dl> |
|
|
<li> |
<li> |
|
<a name=29></a> |
|
|
|
<h3><font color=#e00000>OpenBSD 2.9 Security Advisories</font></h3> |
|
These are the OpenBSD 2.9 advisories -- all these problems are solved |
|
in <a href=anoncvs.html>OpenBSD current</a> and the |
|
<a href=anoncvs.html#using>patch branch</a>. |
|
|
|
<p> |
|
<ul> |
|
<li>None yet. |
|
</ul> |
|
|
|
<p> |
|
<li> |
<a name=28></a> |
<a name=28></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.8 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.8 Security Advisories</font></h3> |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
<li><a href=errata.html#ipf_frag>Apr 23, 2001: |
<li><a href=errata28.html#ipf_frag>Apr 23, 2001: |
IPF contains a serious bug with its handling of fragment cacheing.</a> |
IPF contains a serious bug with its handling of fragment cacheing.</a> |
<li><a href=errata.html#glob_limit>Apr 23, 2001: |
<li><a href=errata28.html#glob_limit>Apr 23, 2001: |
ftpd(8) contains a potential DoS relating to glob(3).</a> |
ftpd(8) contains a potential DoS relating to glob(3).</a> |
<li><a href=errata.html#glob>Apr 10, 2001: |
<li><a href=errata28.html#glob>Apr 10, 2001: |
The glob(3) library call contains multiple buffer overflows.</a> |
The glob(3) library call contains multiple buffer overflows.</a> |
<li><a href=errata.html#readline>Mar 18, 2001: |
<li><a href=errata28.html#readline>Mar 18, 2001: |
The readline library creates history files with permissive modes based on the user's umask.</a> |
The readline library creates history files with permissive modes based on the user's umask.</a> |
<li><a href=errata.html#ipsec_ah>Mar 2, 2001: |
<li><a href=errata28.html#ipsec_ah>Mar 2, 2001: |
Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel.</a> |
Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun in the kernel.</a> |
<li><a href=errata.html#userldt>Mar 2, 2001: |
<li><a href=errata28.html#userldt>Mar 2, 2001: |
The <b>USER_LDT</b> kernel option allows an attacker to gain access to privileged areas of kernel memory.</a> |
The <b>USER_LDT</b> kernel option allows an attacker to gain access to privileged areas of kernel memory.</a> |
<li><a href=errata.html#sudo>Feb 22, 2001: |
<li><a href=errata28.html#sudo>Feb 22, 2001: |
a non-exploitable buffer overflow was fixed in sudo(8).</a> |
a non-exploitable buffer overflow was fixed in sudo(8).</a> |
<li><a href=errata.html#named>Jan 29, 2001: |
<li><a href=errata28.html#named>Jan 29, 2001: |
merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities.</a> |
merge named(8) with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities.</a> |
<li><a href=errata.html#rnd>Jan 22, 2001: |
<li><a href=errata28.html#rnd>Jan 22, 2001: |
rnd(4) did not use all of its input when written to.</a> |
rnd(4) did not use all of its input when written to.</a> |
<li><a href=errata.html#xlock>Dec 22, 2000: |
<li><a href=errata28.html#xlock>Dec 22, 2000: |
xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included).</a> |
xlock(1)'s authentication was re-done to authenticate via a named pipe. (patch and new xlock binaries included).</a> |
<li><a href=errata.html#procfs>Dec 18, 2000: |
<li><a href=errata28.html#procfs>Dec 18, 2000: |
Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included).</a> |
Procfs contains numerous overflows. Procfs is not used by default in OpenBSD. (patch included).</a> |
<li><a href=errata.html#kerberos2>Dec 10, 2000: |
<li><a href=errata28.html#kerberos2>Dec 10, 2000: |
Another problem exists in KerberosIV libraries (patch included).</a> |
Another problem exists in KerberosIV libraries (patch included).</a> |
<li><a href=errata.html#kerberos>Dec 7, 2000: |
<li><a href=errata28.html#kerberos>Dec 7, 2000: |
A set of problems in KerberosIV exist (patch included).</a> |
A set of problems in KerberosIV exist (patch included).</a> |
<li><a href=errata.html#ftpd>Dec 4, 2000: |
<li><a href=errata28.html#ftpd>Dec 4, 2000: |
A single-byte buffer overflow exists in ftpd (patch included).</a> |
A single-byte buffer overflow exists in ftpd (patch included).</a> |
</ul> |
</ul> |
|
|