version 1.356, 2008/03/07 18:15:14 |
version 1.357, 2008/03/31 01:40:47 |
|
|
<a href="#39">3.9</a>, |
<a href="#39">3.9</a>, |
<a href="#40">4.0</a>, |
<a href="#40">4.0</a>, |
<a href="#41">4.1</a>, |
<a href="#41">4.1</a>, |
<a href="#42">4.2</a>. |
<a href="#42">4.2</a>, |
|
<a href="#43">4.3</a>. |
</td> |
</td> |
</tr> |
</tr> |
</table> |
</table> |
|
|
<li><h3><font color="#e00000">Advisories</font></h3><p> |
<li><h3><font color="#e00000">Advisories</font></h3><p> |
|
|
<li> |
<li> |
|
<a name="43"></a> |
|
|
|
<h3><font color="#e00000">OpenBSD 4.3 Security Advisories</font></h3> |
|
These are the OpenBSD 4.3 advisories -- all these problems are solved |
|
in <a href=anoncvs.html>OpenBSD current</a> and the |
|
<a href=stable.html>patch branch</a>. |
|
|
|
<p> |
|
<ul> |
|
<li><a href="errata43.html#001_openssh">March 30, 2008: |
|
sshd(8) could allow arbitrary commands to be executed via ~/.ssh/rc |
|
even when a sshd_config(5) ForceCommand directive was in effect.</a> |
|
</ul> |
|
|
|
|
|
<li> |
<a name="42"></a> |
<a name="42"></a> |
|
|
<h3><font color="#e00000">OpenBSD 4.2 Security Advisories</font></h3> |
<h3><font color="#e00000">OpenBSD 4.2 Security Advisories</font></h3> |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href="errata42.html#010_openssh">March 30, 2008: |
|
sshd(8) could allow arbitrary commands to be executed via ~/.ssh/rc |
|
even when a sshd_config(5) ForceCommand directive was in effect.</a> |
<li><a href="errata42.html#009_ppp">March 7, 2008: |
<li><a href="errata42.html#009_ppp">March 7, 2008: |
Command prompt parsing buffer overflow in ppp.</a> |
Command prompt parsing buffer overflow in ppp.</a> |
<li><a href="errata42.html#006_xorg">Feb 8, 2008: |
<li><a href="errata42.html#006_xorg">Feb 8, 2008: |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href="errata41.html#015_openssh">March 30, 2008: |
|
sshd(8) could allow arbitrary commands to be executed via ~/.ssh/rc |
|
even when a sshd_config(5) ForceCommand directive was in effect.</a> |
<li><a href="errata41.html#014_ppp">March 7, 2008: |
<li><a href="errata41.html#014_ppp">March 7, 2008: |
Command prompt parsing buffer overflow in ppp.</a> |
Command prompt parsing buffer overflow in ppp.</a> |
<li><a href="errata41.html#012_xorg">Feb 8, 2008: |
<li><a href="errata41.html#012_xorg">Feb 8, 2008: |