This is the OpenBSD 3.4 release errata & patch list:
For OpenBSD patch branch information, please refer here.
For important packages updates, please refer here.
For errata on a certain release, click below:
2.1,
2.2,
2.3,
2.4,
2.5,
2.6,
2.7,
2.8,
2.9,
3.0,
3.1,
3.2,
3.3.
You can also fetch a tar.gz file containing all the following patches.
This file is updated once a day.
The patches below are available in CVS via the
OPENBSD_3_4
patch branch.
For more detailed information on how to install patches to OpenBSD, please
consult the OpenBSD FAQ.
All architectures
- 004: RELIABILITY FIX: October 29, 2003
A user with write permission to httpd.conf or a .htaccess
file can crash
httpd(8)
or potentially run arbitrary code as the user www (although it
is believed that ProPolice will prevent code execution).
A source code patch exists which remedies the problem.
- 003: RELIABILITY FIX: October 1, 2003
It is possible for a local user to cause a system panic by flooding it with spoofed ARP
requests.
A source code patch exists which remedies the problem.
- 002: SECURITY FIX: October 1, 2003
The use of certain ASN.1 encodings or malformed public keys may allow an
attacker to mount a denial of service attack against applications linked with
ssl(3).
This does not affect OpenSSH.
A source code patch exists which remedies the problem.
- 001: DOCUMENTATION FIX: November 1, 2003
The CD insert documentation has an incorrect example for package installation.
Where it is written:
# pkg_add ftp://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386
It should instead read:
# pkg_add ftp://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386/
The extra / at the end is important.
i386
- No problems identified yet.
alpha
- No problems identified yet.
mac68k
- No problems identified yet.
sparc
- No problems identified yet.
sparc64
- No problems identified yet.
hppa
- No problems identified yet.
hp300
- No problems identified yet.
mvme68k
- No problems identified yet.
macppc
- No problems identified yet.
vax
- No problems identified yet.
For OpenBSD patch branch information, please refer here.
For important packages updates, please refer here.
For errata on a certain release, click below:
2.1,
2.2,
2.3,
2.4,
2.5,
2.6,
2.7,
2.8,
2.9,
3.0,
3.1,
3.2,
3.3.
www@openbsd.org
$OpenBSD: errata.html,v 1.460 2003/10/31 01:28:11 margarida Exp $