os/doc
3
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
45382 commits 1 branch 79 tags 298 MiB
Commit graph

27 commits

Author SHA1 Message Date
Xin LI
80fa2f495c Add SA-14:20 - SA-14:23. 2014-10-21 20:48:08 +00:00
Xin LI
c6ff33a274 Add SA-14:19.tcp. 2014-09-16 10:03:58 +00:00
Xin LI
957bbade8e Add SA-14:18.openssl. 2014-09-09 10:29:20 +00:00
Xin LI
d126e9c52b Add SA-14:17.kmem and EN-14:09.jail. 2014-07-08 22:23:25 +00:00
Xin LI
bbd3497201 Add SA-14:15.iconv, SA-14:16.file, EN-14:07.pmap and EN-14:08.heimdal. 2014-06-24 19:29:17 +00:00
Xin LI
05be27dd8f Add SA-14:14.openssl. 2014-06-05 13:03:07 +00:00
Xin LI
08d01245c0 Reorder advisories so they appear in the right order. 2014-06-03 21:18:23 +00:00
Xin LI
e6520ef815 Add 3 latest advisories and 1 errata: 
Fix sendmail improper close-on-exec flag handling. [SA-14:11]

Fix ktrace memory disclosure. [SA-14:12]

Fix incorrect error handling in PAM policy parser. [SA-14:13]

Fix triple-fault when executing from a threaded process. [EN-14:06]
 2014-06-03 19:32:04 +00:00
Xin LI
ad73e2ef39 Correct last advisory's name. 2014-05-14 00:03:53 +00:00
Xin LI
6705d61482 Add the latest advisory and 3 new errata notices: 
Fix OpenSSL NULL pointer deference vulnerability. [SA-14:09]

  Add pkg bootstrapping, configuration and public keys. [EN-14:03]
  Improve build repeatability for kldxref(8). [EN-14:04]
  Fix data corruption with ciss(4). [EN-14:05]
 2014-05-13 23:55:52 +00:00
Xin LI
e4e2190aed Add 3 new advisories: 
Fix devfs rules not applied by default for jails. [SA-14:07]

Fix OpenSSL use-after-free vulnerability. [SA-14:08]

Fix TCP reassembly vulnerability. [SA-14:09]
 2014-04-30 04:32:38 +00:00
Xin LI
dd97bfc0fc Add two latest security advisories: 
Fix NFS server deadlock vulnerability. [SA-14:05]

Fix OpenSSL multiple vulnerabilities. [SA-14:06]
 2014-04-08 23:27:31 +00:00
Xin LI
afa438cbd9 Reorder advisories so they appear in the right order on RSS feeds. 2014-01-14 22:08:29 +00:00
Xin LI
dcb9c59cc2 Add 4 latest advisories and 2 latest errata notices: 
Fix bsnmpd remote denial of service vulnerability. [SA-14:01]

Fix ntpd distributed reflection Denial of Service vulnerability.
[SA-14:02]

Fix OpenSSL multiple vulnerabilities. [SA-14:03]

Fix BIND remote denial of service vulnerability. [SA-14:04]

Disable hardware RNGs by default. [EN-14:01]

Fix incorrect coalescing of stack entry with mmap. [EN-14:02]
 2014-01-14 19:57:49 +00:00
Dag-Erling Smørgrav
f57acf6c24 Pre-zero the MAC context. 
Security:	CVE-2013-4548
Security:	FreeBSD-SA-13:14.openssh
Approved by:	so
 2013-11-19 10:20:35 +00:00
Dag-Erling Smørgrav
c4d9a19be3 Fix the length calculation for the final block of a sendfile(2) 
transmission which could be tricked into rounding up to the nearest
page size, leaking up to a page of kernel memory.  [13:11]

In IPv6 and NetATM, stop SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR
and SIOCSIFNETMASK at the socket layer rather than pass them on to the
link layer without validation or credential checks.  [SA-13:12]

Prevent cross-mount hardlinks between different nullfs mounts of the
same underlying filesystem.  [SA-13:13]

Security:	CVE-2013-5666
Security:	FreeBSD-SA-13:11.sendfile
Security:	CVE-2013-5691
Security:	FreeBSD-SA-13:12.ifioctl
Security:	CVE-2013-5710
Security:	FreeBSD-SA-13:13.nullfs
Approved by:	so
 2013-09-10 10:31:23 +00:00
Xin LI
b735a9d213 Add two latest advisories: 
Fix an integer overflow in computing the size of a temporary buffer
can result in a buffer which is too small for the requested
operation. [13:09]

Fix a bug that could lead to kernel memory disclosure with
SCTP state cookie. [13:10]

Add latest errata notices:

Fix a data corruption problem with mfi(4) operating on > 2TB
disks in a JBOD. [EN-13:03]
 2013-08-22 01:12:09 +00:00
Xin LI
5cffdd326e Fix order. 2013-07-27 03:43:41 +00:00
Xin LI
223eda903e Add two latest advisories: 
Fix Denial of Service vulnerability in named(8). [13:07]

  Fix a bug that allows remote client bypass the normal
  access checks when when -network or -host restrictions are
  used at the same time with -mapall. [13:08]
 2013-07-27 03:39:12 +00:00
Dag-Erling Smørgrav
037314c9bc Fix a bug that allowed a tracing process (e.g. gdb) to write 
to a memory-mapped file in the traced process's address space
even if neither the traced process nor the tracing process had
write access to that file.

Security:	CVE-2013-2171
Security:	FreeBSD-SA-13:06.mmap
Approved by:	so
 2013-06-18 07:17:53 +00:00
Glen Barber
c73cbed9bc Fix the nfsserver advisory date/link. 
Approved by:	doceng (implicit)
 2013-04-29 21:24:50 +00:00
Dag-Erling Smørgrav
d1056d0259 Fix a bug that allows NFS clients to issue READDIR on files. 
PR:		kern/178016
Security:	CVE-2013-3266
Security:	FreeBSD-SA-13:05.nfsserver
Approved by:	so
 2013-04-29 20:53:58 +00:00
Xin LI
04b880b25a Add latest security advisories: 
Fix OpenSSL multiple vulnerabilities. [13:03]

  Fix BIND remote denial of service. [13:04]

Security:	CVE-2013-0166, CVE-2013-0169
Security:	FreeBSD-SA-13:03.openssl
Security:	CVE-2013-2266
Security:	FreeBSD-SA-13:04.bind
 2013-04-02 18:01:39 +00:00
Bjoern A. Zeeb
fef748c3be Add latest security advisories: 
Fix Denial of Service vulnerability in named(8) with DNS64. [13:01]

  Fix Denial of Service vulnerability in libc's glob(3) functionality.
  [13:02]

Security:	CVE-2012-5688
Security:	FreeBSD-SA-13:01.bind
Security:	CVE-2010-2632
Security:	FreeBSD-SA-13:02.libc
 2013-02-19 13:56:49 +00:00
Xin LI
bf059192fd SA-12:08 is SA-12:08.linux. 2012-11-23 00:00:23 +00:00
Simon L. B. Nielsen
26913edc9f Add latest advisories. 2012-11-22 23:46:26 +00:00
Gabor Kovesdan
77d737ee88 - Rename the share/sgml directories to share/xml 
- Fix build errors from the next change

Approved by:	doceng (implicit)
 2012-10-01 11:56:00 +00:00
Renamed from share/sgml/advisories.xml (Browse further)