| version 1.91, 1999/03/22 07:37:59 |
version 1.92, 1999/04/12 08:41:56 |
|
|
| OpenBSD 2.3 advisories listed below are fixed in OpenBSD 2.4. |
OpenBSD 2.3 advisories listed below are fixed in OpenBSD 2.4. |
| |
|
| <ul> |
<ul> |
| <li><a href=errata.html#poll>Mar 22, 1999: The nfds argument for poll(2) needs |
<li><a href=errata24.html#poll>Mar 22, 1999: The nfds argument for poll(2) needs |
| to be constrained, to avoid kvm starvation (patch included).</a> |
to be constrained, to avoid kvm starvation (patch included).</a> |
| <li><a href=errata.html#tss>Mar 21, 1999: A change in TSS handling stops |
<li><a href=errata24.html#tss>Mar 21, 1999: A change in TSS handling stops |
| another kernel crash case caused by the <strong>crashme</strong> |
another kernel crash case caused by the <strong>crashme</strong> |
| program (patch included).</a> |
program (patch included).</a> |
| <li><a href=errata.html#nlink>Feb 25, 1999: An unbounded increment on the |
<li><a href=errata24.html#nlink>Feb 25, 1999: An unbounded increment on the |
| nlink value in FFS and EXT2FS filesystems can cause a system crash. |
nlink value in FFS and EXT2FS filesystems can cause a system crash. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#ping>Feb 23, 1999: Yet another buffer overflow |
<li><a href=errata24.html#ping>Feb 23, 1999: Yet another buffer overflow |
| existed in ping(8). (patch included).</a> |
existed in ping(8). (patch included).</a> |
| <li><a href=errata.html#ipqrace>Feb 19, 1999: ipintr() had a race in use of |
<li><a href=errata24.html#ipqrace>Feb 19, 1999: ipintr() had a race in use of |
| the ipq, which could permit an attacker to cause a crash. |
the ipq, which could permit an attacker to cause a crash. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#accept>Feb 17, 1999: A race condition in the |
<li><a href=errata24.html#accept>Feb 17, 1999: A race condition in the |
| kernel between accept(2) and select(2) could permit an attacker |
kernel between accept(2) and select(2) could permit an attacker |
| to hang sockets from remote. |
to hang sockets from remote. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#maxqueue>Feb 17, 1999: IP fragment assembly can |
<li><a href=errata24.html#maxqueue>Feb 17, 1999: IP fragment assembly can |
| bog the machine excessively and cause problems. |
bog the machine excessively and cause problems. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#trctrap>Feb 12, 1999: i386 T_TRCTRAP handling and |
<li><a href=errata24.html#trctrap>Feb 12, 1999: i386 T_TRCTRAP handling and |
| DDB interacted to possibly cause a crash. |
DDB interacted to possibly cause a crash. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#rst>Feb 11, 1999: TCP/IP RST handling was sloppy. |
<li><a href=errata24.html#rst>Feb 11, 1999: TCP/IP RST handling was sloppy. |
| (patch included).</a> |
(patch included).</a> |
| <li><a href=errata.html#bootpd>Nov 27, 1998: There is a remotely exploitable |
<li><a href=errata24.html#bootpd>Nov 27, 1998: There is a remotely exploitable |
| problem in bootpd(8). (patch included).</a> |
problem in bootpd(8). (patch included).</a> |
| <li><a href=errata.html#termcap>Nov 19, 1998: There is a possibly locally |
<li><a href=errata24.html#termcap>Nov 19, 1998: There is a possibly locally |
| exploitable problem relating to environment variables in termcap |
exploitable problem relating to environment variables in termcap |
| and curses. (patch included).</a> |
and curses. (patch included).</a> |
| <li><a href=errata.html#tcpfix>Nov 13, 1998: There is a remote machine lockup |
<li><a href=errata24.html#tcpfix>Nov 13, 1998: There is a remote machine lockup |
| bug in the TCP decoding kernel. (patch included).</a> |
bug in the TCP decoding kernel. (patch included).</a> |
| </ul> |
</ul> |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to security.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www