http://www.vantronix.com/ OpenBSD Release Errata .vantronix en daily 1 1970-01-01T00:00+00:00 http://www.vantronix.com/ http://www.vantronix.com/pix/vantronix.png http://www.vantronix.com/support/errata/#errata40-017 OpenBSD 2007-10-10 The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow. (http://www.openbsd.org/errata40.html#017_openssl) http://www.vantronix.com/support/errata/#errata40-016 OpenBSD 2007-10-08 Malicious DHCP clients could cause dhcpd(8) to corrupt its stack A DHCP client that claimed to require a maximum message size less than the minimum IP MTU could cause dhcpd(8) to overwrite stack memory. (http://www.openbsd.org/errata40.html#016_dhcpd) http://www.vantronix.com/support/errata/#errata40-015 OpenBSD 2007-07-09 Fix possible heap overflow in file(1), aka CVE-2007-1536. A source code patch exists which remedies this problem. (http://www.openbsd.org/errata40.html#015_file) http://www.vantronix.com/support/errata/#errata40-014 OpenBSD 2007-05-09 A malicious client can cause a division by zero. A source code patch exists which remedies this problem. (http://www.openbsd.org/errata40.html#014_xorg) http://www.vantronix.com/support/errata/#errata40-013 OpenBSD 2007-04-26 An unhandled AltiVec assist exception can cause a kernel panic. A source code patch exists which remedies this problem. (http://www.openbsd.org/errata40.html#013_altivec) http://www.vantronix.com/support/errata/#errata40-012 OpenBSD 2007-04-23 IPv6 type 0 route headers can be used to mount a DoS attack against hosts and networks. This is a design flaw in IPv6 and not a bug in OpenBSD. A source code patch exists which remedies this problem. (http://www.openbsd.org/errata40.html#012_route6) http://www.vantronix.com/support/errata/#errata40-011 OpenBSD 2007-04-04 Multiple vulnerabilities have been discovered in X.Org. XC-MISC extension ProcXCMiscGetXIDList memory corruption vulnerability, BDFFont parsing integer overflow vulnerability, fonts.dir file parsing integer overflow vulnerability, multiple integer overflows in the XGetPixel() and XInitImage functions in ImUtil.c. CVE-2007-1003, CVE-2007-1351, CVE-2007-1352, CVE-2007-1667. (http://www.openbsd.org/errata40.html#011_xorg) http://www.vantronix.com/support/errata/#errata40-010 OpenBSD 2007-03-07 2nd revision, March 17, 2007 Incorrect mbuf handling for ICMP6 packets. Using pf(4) to avoid the problem packets is an effective workaround until the patch can be installed. Use "block in inet6" in /etc/pf.conf (http://www.openbsd.org/errata40.html#m_dup1) http://www.vantronix.com/support/errata/#errata40-009 OpenBSD 2007-02-04 A US daylight saving time rules change takes effect in 2007. (http://www.openbsd.org/errata40.html#timezone) http://www.vantronix.com/support/errata/#errata40-008 OpenBSD 2007-01-16 Under some circumstances, processing an ICMP6 echo request would cause the kernel to enter an infinite loop. (http://www.openbsd.org/errata40.html#icmp6) http://www.vantronix.com/support/errata/#errata40-006 OpenBSD 2006-12-04 The src.tar.gz and ports.tar.gz archives released on FTP were created incorrectly, a week after the 4.0 release. The archives on the CD sets are correct; this only affects people who downloaded them from a mirror. (http://www.openbsd.org/errata40.html#agp) http://www.vantronix.com/support/errata/#errata40-005 OpenBSD 2006-11-19 The ELF ld.so(1) fails to properly sanitize the environment. There is a potential localhost security problem in cases we have not found yet. This patch applies to all ELF-based systems (m68k, m88k, and vax are a.out-based systems). (http://www.openbsd.org/errata40.html#ldso) http://www.vantronix.com/support/errata/#errata40-004 OpenBSD 2006-11-07 Due to a bug in the arc(4) RAID driver the driver will not properly synchronize the cache to the logical volumes upon system shut down. The result being that the mounted file systems within the logical volumes will not be properly marked as being clean and fsck will be run for the subsequent boot up. (http://www.openbsd.org/errata40.html#arc) http://www.vantronix.com/support/errata/#errata40-003 OpenBSD 2006-11-04 Fix for an integer overflow in systrace(4)'s STRIOCREPLACE support, found by Chris Evans. This could be exploited for DoS, limited kmem reads or local privilege escalation. (http://www.openbsd.org/errata40.html#systrace) http://www.vantronix.com/support/errata/#errata40-002 OpenBSD 2006-11-04 Several problems have been found in OpenSSL. While parsing certain invalid ASN.1 structures an error condition is mishandled, possibly resulting in an infinite loop. A buffer overflow exists in the SSL_get_shared_ciphers function. A NULL pointer may be dereferenced in the SSL version 2 client code. In addition, many applications using OpenSSL do not perform any validation of the lengths of public keys being used. CVE-2006-2937, CVE-2006-3738, CVE-2006-4343, CVE-2006-2940 (http://www.openbsd.org/errata40.html#openssl2) http://www.vantronix.com/support/errata/#errata40-001 OpenBSD 2006-11-04 httpd(8) does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks. CVE-2006-3918 (http://www.openbsd.org/errata40.html#httpd)