OpenBSD 40 Errata

OpenBSD 40 Errata http://www.openbsd.org/errata40.html OpenBSD 40 Errata en-us mike@erdelynet.com erdelynet.com http://erdelynet.com/images/puffy96x83.gif http://www.openbsd.org/errata40.html 96 83 OpenBSD 40 Errata 017 SECURITY 017_openssl http://www.openbsd.org/errata40.html#017_openssl SECURITY All architectures October 10, 2007 A source code patch exists which remedies this problem.
]]> 016 SECURITY 016_dhcpd http://www.openbsd.org/errata40.html#016_dhcpd SECURITY All architectures October 8, 2007 A DHCP client that claimed to require a maximum message size less than the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
A source code patch exists which remedies this problem.
]]> 015 SECURITY 015_file http://www.openbsd.org/errata40.html#015_file SECURITY All Architectures July 9, 2007 A source code patch exists which remedies this problem.
]]> 014 STABILITY 014_xorg http://www.openbsd.org/errata40.html#014_xorg STABILITY All Architectures May 9, 2007 A source code patch exists which remedies this problem.
]]> 013 STABILITY 013_altivec http://www.openbsd.org/errata40.html#013_altivec STABILITY PowerPC April 26, 2007 A source code patch exists which remedies this problem.
]]> 012 SECURITY 012_route6 http://www.openbsd.org/errata40.html#012_route6 SECURITY All architectures April 23, 2007 A source code patch exists which remedies this problem.
]]> 011 SECURITY 011_xorg http://www.openbsd.org/errata40.html#011_xorg SECURITY All architectures April 4, 2007 XC-MISC extension ProcXCMiscGetXIDList memory corruption vulnerability, BDFFont parsing integer overflow vulnerability, fonts.dir file parsing integer overflow vulnerability, multiple integer overflows in the XGetPixel() and XInitImage functions in ImUtil.c. CVE-2007-1003, CVE-2007-1351, CVE-2007-1352, CVE-2007-1667.
A source code patch exists which remedies this problem.
]]> 010 SECURITY m_dup1 http://www.openbsd.org/errata40.html#m_dup1 SECURITY All architectures March 7, 2007 2nd revision, March 17, 2007
Incorrect mbuf handling for ICMP6 packets.
Using pf(4) to avoid the problem packets is an effective workaround until the patch can be installed.
Use "block in inet6" in /etc/pf.conf
A source code patch exists which remedies this problem.
]]> 009 INTEROPERABILITY timezone http://www.openbsd.org/errata40.html#timezone INTEROPERABILITY All architectures February 4, 2007 A source code patch exists which syncs the timezone data files with tzdata2007a.
]]> 008 RELIABILITY icmp6 http://www.openbsd.org/errata40.html#icmp6 RELIABILITY All architectures January 16, 2007 A source code patch exists which remedies this problem.
]]> 007 SECURITY agp http://www.openbsd.org/errata40.html#agp SECURITY i386 only January 3, 2007 vga(4) may allow an attacker to gain root privileges if the kernel is compiled with option PCIAGP and the actual device is not an AGP device. The PCIAGP option is present by default on i386 kernels only.
A source code patch exists which remedies this problem.
]]> 006 FTP DISTRIBUTION ERROR ports-tar http://www.openbsd.org/errata40.html#ports-tar FTP DISTRIBUTION ERROR All architectures December 4, 2006 src.tar.gz and ports.tar.gz archives released on FTP were created incorrectly, a week after the 4.0 release. The archives on the CD sets are correct; this only affects people who downloaded them from a mirror.
The archives have been corrected. The correct MD5 of ports.tar.gz is eff352b4382a7fb7ffce1e8b37e9eb56, and for src.tar.gz it is b8d7a0dc6f3d27a5377a23d69c40688e.
]]> 005 SECURITY ldso http://www.openbsd.org/errata40.html#ldso SECURITY All architectures November 19, 2006 ld.so(1) fails to properly sanitize the environment. There is a potential localhost security problem in cases we have not found yet. This patch applies to all ELF-based systems (m68k, m88k, and vax are a.out-based systems).
A source code patch exists which remedies this problem.
]]> 004 RELIABILITY arc http://www.openbsd.org/errata40.html#arc RELIABILITY All architectures November 7, 2006 arc(4) RAID driver the driver will not properly synchronize the cache to the logical volumes upon system shut down. The result being that the mounted file systems within the logical volumes will not be properly marked as being clean and fsck will be run for the subsequent boot up.
A source code patch exists which remedies this problem.
]]> 003 SECURITY systrace http://www.openbsd.org/errata40.html#systrace SECURITY All architectures November 4, 2006 systrace(4)'s STRIOCREPLACE support, found by Chris Evans. This could be exploited for DoS, limited kmem reads or local privilege escalation.
A source code patch exists which remedies this problem.
]]> 002 SECURITY openssl2 http://www.openbsd.org/errata40.html#openssl2 SECURITY All architectures November 4, 2006 CVE-2006-2937, CVE-2006-3738, CVE-2006-4343, CVE-2006-2940
A source code patch exists which remedies this problem.
]]> 001 SECURITY httpd http://www.openbsd.org/errata40.html#httpd SECURITY All architectures November 4, 2006 httpd(8) does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks. CVE-2006-3918
A source code patch exists which remedies this problem.
]]>