| version 1.234, 2003/02/23 00:20:51 |
version 1.235, 2003/02/23 17:21:50 |
|
|
| </ul> |
</ul> |
| |
|
| <p> |
<p> |
| |
|
| <li> |
<li> |
| <a name=31></a> |
<a name=31></a> |
| |
|
|
|
| |
|
| <p> |
<p> |
| <ul> |
<ul> |
| |
<li><a href=errata31.html#ssl2>February 23, 2003: |
| |
In ssl(8) an information leak can occur via timing by performing |
| |
a MAC computation even if incorrect block cipher padding has |
| |
been found, this is a countermeasure. Also, check for negative |
| |
sizes, in allocation routines.</a> |
| <li><a href=errata31.html#cvs>January 20, 2003: |
<li><a href=errata31.html#cvs>January 20, 2003: |
| A double free exists in cvs(1) that could lead to privilege |
A double free exists in cvs(1) that could lead to privilege |
| escalation for cvs configurations where the cvs command is |
escalation for cvs configurations where the cvs command is |
|
|
| in the sshd_config file.</a> |
in the sshd_config file.</a> |
| </ul> |
</ul> |
| |
|
| |
</dl> |
| <p> |
<p> |
| |
OpenBSD 3.0 and earlier releases are not supported anymore. The following |
| |
paragraphs only list advisories issued while they were maintained; these |
| |
releases are likely to be affected by the advisories for more recent releases. |
| |
<br> |
| |
|
| |
<p> |
| |
<dl> |
| |
|
| |
<p> |
| <li> |
<li> |
| <a name=30></a> |
<a name=30></a> |
| |
|
|
|
| A security hole that may allow an attacker to partially authenticate |
A security hole that may allow an attacker to partially authenticate |
| if -- and only if -- the administrator has enabled KerberosV.</a> |
if -- and only if -- the administrator has enabled KerberosV.</a> |
| </ul> |
</ul> |
| </dl> |
|
| <p> |
|
| OpenBSD 2.9 and earlier releases are not supported anymore. The following |
|
| paragraphs only list advisories issued while they were maintained; these |
|
| releases are likely to be affected by the advisories for more recent releases. |
|
| <br> |
|
| |
|
| <p> |
<p> |
| <dl> |
|
| <li> |
<li> |
| <a name=29></a> |
<a name=29></a> |
| |
|
|
|
| |
|
| <p> |
<p> |
| <li> |
<li> |
| |
|
| <a name=25></a> |
<a name=25></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.5 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.5 Security Advisories</font></h3> |
|
|
| <p> |
<p> |
| <li> |
<li> |
| <a name=24></a> |
<a name=24></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.4 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.4 Security Advisories</font></h3> |
| These are the OpenBSD 2.4 advisories -- all these problems are solved |
These are the OpenBSD 2.4 advisories -- all these problems are solved |
| in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
|
|
| <p> |
<p> |
| <li> |
<li> |
| <a name=23></a> |
<a name=23></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.3 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.3 Security Advisories</font></h3> |
| These are the OpenBSD 2.3 advisories -- all these problems are solved |
These are the OpenBSD 2.3 advisories -- all these problems are solved |
| in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
|
|
| <p> |
<p> |
| <li> |
<li> |
| <a name=22></a> |
<a name=22></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.2 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.2 Security Advisories</font></h3> |
| These are the OpenBSD 2.2 advisories. All these problems are solved |
These are the OpenBSD 2.2 advisories. All these problems are solved |
| in <a href=23.html>OpenBSD 2.3</a>. Some of these problems |
in <a href=23.html>OpenBSD 2.3</a>. Some of these problems |
|
|
| <p> |
<p> |
| <li> |
<li> |
| <a name=21></a> |
<a name=21></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.1 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.1 Security Advisories</font></h3> |
| These are the OpenBSD 2.1 advisories. All these problems are solved |
These are the OpenBSD 2.1 advisories. All these problems are solved |
| in <a href=22.html>OpenBSD 2.2</a>. Some of these problems still |
in <a href=22.html>OpenBSD 2.2</a>. Some of these problems still |
|
|
| <p> |
<p> |
| <li> |
<li> |
| <a name=20></a> |
<a name=20></a> |
| |
|
| <h3><font color=#e00000>OpenBSD 2.0 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.0 Security Advisories</font></h3> |
| These are the OpenBSD 2.0 advisories. All these problems are solved |
These are the OpenBSD 2.0 advisories. All these problems are solved |
| in <a href=21.html>OpenBSD 2.1</a>. Some of these problems still |
in <a href=21.html>OpenBSD 2.1</a>. Some of these problems still |
![[BACK]](/icons/back.gif){kind=icon}
Return to security.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www