version 1.234, 2003/02/23 00:20:51 |
version 1.235, 2003/02/23 17:21:50 |
|
|
</ul> |
</ul> |
|
|
<p> |
<p> |
|
|
<li> |
<li> |
<a name=31></a> |
<a name=31></a> |
|
|
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata31.html#ssl2>February 23, 2003: |
|
In ssl(8) an information leak can occur via timing by performing |
|
a MAC computation even if incorrect block cipher padding has |
|
been found, this is a countermeasure. Also, check for negative |
|
sizes, in allocation routines.</a> |
<li><a href=errata31.html#cvs>January 20, 2003: |
<li><a href=errata31.html#cvs>January 20, 2003: |
A double free exists in cvs(1) that could lead to privilege |
A double free exists in cvs(1) that could lead to privilege |
escalation for cvs configurations where the cvs command is |
escalation for cvs configurations where the cvs command is |
|
|
in the sshd_config file.</a> |
in the sshd_config file.</a> |
</ul> |
</ul> |
|
|
|
</dl> |
<p> |
<p> |
|
OpenBSD 3.0 and earlier releases are not supported anymore. The following |
|
paragraphs only list advisories issued while they were maintained; these |
|
releases are likely to be affected by the advisories for more recent releases. |
|
<br> |
|
|
|
<p> |
|
<dl> |
|
|
|
<p> |
<li> |
<li> |
<a name=30></a> |
<a name=30></a> |
|
|
|
|
A security hole that may allow an attacker to partially authenticate |
A security hole that may allow an attacker to partially authenticate |
if -- and only if -- the administrator has enabled KerberosV.</a> |
if -- and only if -- the administrator has enabled KerberosV.</a> |
</ul> |
</ul> |
</dl> |
|
<p> |
|
OpenBSD 2.9 and earlier releases are not supported anymore. The following |
|
paragraphs only list advisories issued while they were maintained; these |
|
releases are likely to be affected by the advisories for more recent releases. |
|
<br> |
|
|
|
<p> |
<p> |
<dl> |
|
<li> |
<li> |
<a name=29></a> |
<a name=29></a> |
|
|
|
|
|
|
<p> |
<p> |
<li> |
<li> |
|
|
<a name=25></a> |
<a name=25></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.5 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.5 Security Advisories</font></h3> |
|
|
<p> |
<p> |
<li> |
<li> |
<a name=24></a> |
<a name=24></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.4 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.4 Security Advisories</font></h3> |
These are the OpenBSD 2.4 advisories -- all these problems are solved |
These are the OpenBSD 2.4 advisories -- all these problems are solved |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
|
|
<p> |
<p> |
<li> |
<li> |
<a name=23></a> |
<a name=23></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.3 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.3 Security Advisories</font></h3> |
These are the OpenBSD 2.3 advisories -- all these problems are solved |
These are the OpenBSD 2.3 advisories -- all these problems are solved |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
in <a href=anoncvs.html>OpenBSD current</a>. Obviously, all the |
|
|
<p> |
<p> |
<li> |
<li> |
<a name=22></a> |
<a name=22></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.2 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.2 Security Advisories</font></h3> |
These are the OpenBSD 2.2 advisories. All these problems are solved |
These are the OpenBSD 2.2 advisories. All these problems are solved |
in <a href=23.html>OpenBSD 2.3</a>. Some of these problems |
in <a href=23.html>OpenBSD 2.3</a>. Some of these problems |
|
|
<p> |
<p> |
<li> |
<li> |
<a name=21></a> |
<a name=21></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.1 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.1 Security Advisories</font></h3> |
These are the OpenBSD 2.1 advisories. All these problems are solved |
These are the OpenBSD 2.1 advisories. All these problems are solved |
in <a href=22.html>OpenBSD 2.2</a>. Some of these problems still |
in <a href=22.html>OpenBSD 2.2</a>. Some of these problems still |
|
|
<p> |
<p> |
<li> |
<li> |
<a name=20></a> |
<a name=20></a> |
|
|
<h3><font color=#e00000>OpenBSD 2.0 Security Advisories</font></h3> |
<h3><font color=#e00000>OpenBSD 2.0 Security Advisories</font></h3> |
These are the OpenBSD 2.0 advisories. All these problems are solved |
These are the OpenBSD 2.0 advisories. All these problems are solved |
in <a href=21.html>OpenBSD 2.1</a>. Some of these problems still |
in <a href=21.html>OpenBSD 2.1</a>. Some of these problems still |