os/doc
3
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
47210 commits 1 branch 79 tags 298 MiB
Commit graph

51 commits

Author SHA1 Message Date
Xin LI
cf1b7b5093 Announce SA-15:25.ntp on revalent pages. 2015-10-27 00:25:19 +00:00
Xin LI
50ffc8f3ac Add SA-15:24.rpcbind. 2015-09-29 18:14:20 +00:00
Xin LI
817e854bad Add advisory and patches for SA-15:23.bind. 2015-09-02 21:00:38 +00:00
Xin LI
9c7cd2396b Add SA-15:21.amd64, SA-15:22.openssh, EN-15:14.ixgbe and EN-15:15.pkg. 2015-08-25 21:09:45 +00:00
Xin LI
1ce4c8455f Add EN-15:11, EN-15:12, EN-15:13 and SA-15:20. 2015-08-18 20:11:44 +00:00
Xin LI
217e99633c Add SA-15:18 and SA-15:19. 2015-08-05 22:18:29 +00:00
Xin LI
a670bd9852 Add SA-15:14 - SA-15:17. 2015-07-28 20:17:10 +00:00
Xin LI
bb4c3c7b3f Re-add SA-15:13 now that freebsd-update build is done. 2015-07-22 02:50:40 +00:00
Xin LI
352b34b0f1 Temporary hide the advisory for now as we are still waiting freebsd-update 
builds to finish.
 2015-07-22 01:03:50 +00:00
Xin LI
838fb2801b Add SA-15:13.tcp. 2015-07-21 23:51:20 +00:00
Xin LI
a8bf2581ee Add SA-15:12.openssl for today's OpenSSL advisory. Note that this affects 
-STABLE only so no patch is associated with it.
 2015-07-09 17:29:12 +00:00
Xin LI
47eed586a2 Add SA-15:11.bind. 2015-07-07 23:10:24 +00:00
Xin LI
3c90fafa17 Add advisory for SA-15:10.openssl. 2015-06-12 07:33:55 +00:00
Xin LI
4f5662b555 Add 3 new advisories and patches. 2015-04-07 20:36:34 +00:00
Xin LI
0c2ac51c94 Add SA-15:06.openssl. 2015-03-19 17:48:01 +00:00
Xin LI
f01c32e590 Add latest batch of security advisories and errata notices. 2015-02-25 06:25:59 +00:00
Xin LI
4865711fb9 Add advisories and patches for SA-15:02.kmem and SA-15:03.sctp. 2015-01-27 19:53:31 +00:00
Xin LI
6cdc0083a1 Add advisory and patches for SA-15:01.openssl. 2015-01-14 21:37:46 +00:00
Dag-Erling Smørgrav
adcd3fee12 Add EN-14:13 and SA-13:31 2014-12-23 23:28:30 +00:00
Dag-Erling Smørgrav
0cfc9585b8 Add SA-14:30 2014-12-17 08:29:53 +00:00
Dag-Erling Smørgrav
9197ce8969 Add SA-14:2[789] 2014-12-10 16:42:08 +00:00
Xin LI
828875032f Reorder advisories so they show up in consistent order. 2014-12-08 19:45:03 +00:00
Dag-Erling Smørgrav
8f72591b72 copy-paste considered harmful 2014-11-05 00:33:41 +00:00
Dag-Erling Smørgrav
d97869806c Add EN-14:12, SA-14:24, SA-14:25 and SA-14:26. 2014-11-05 00:28:45 +00:00
Xin LI
80fa2f495c Add SA-14:20 - SA-14:23. 2014-10-21 20:48:08 +00:00
Xin LI
c6ff33a274 Add SA-14:19.tcp. 2014-09-16 10:03:58 +00:00
Xin LI
957bbade8e Add SA-14:18.openssl. 2014-09-09 10:29:20 +00:00
Xin LI
d126e9c52b Add SA-14:17.kmem and EN-14:09.jail. 2014-07-08 22:23:25 +00:00
Xin LI
bbd3497201 Add SA-14:15.iconv, SA-14:16.file, EN-14:07.pmap and EN-14:08.heimdal. 2014-06-24 19:29:17 +00:00
Xin LI
05be27dd8f Add SA-14:14.openssl. 2014-06-05 13:03:07 +00:00
Xin LI
08d01245c0 Reorder advisories so they appear in the right order. 2014-06-03 21:18:23 +00:00
Xin LI
e6520ef815 Add 3 latest advisories and 1 errata: 
Fix sendmail improper close-on-exec flag handling. [SA-14:11]

Fix ktrace memory disclosure. [SA-14:12]

Fix incorrect error handling in PAM policy parser. [SA-14:13]

Fix triple-fault when executing from a threaded process. [EN-14:06]
 2014-06-03 19:32:04 +00:00
Xin LI
ad73e2ef39 Correct last advisory's name. 2014-05-14 00:03:53 +00:00
Xin LI
6705d61482 Add the latest advisory and 3 new errata notices: 
Fix OpenSSL NULL pointer deference vulnerability. [SA-14:09]

  Add pkg bootstrapping, configuration and public keys. [EN-14:03]
  Improve build repeatability for kldxref(8). [EN-14:04]
  Fix data corruption with ciss(4). [EN-14:05]
 2014-05-13 23:55:52 +00:00
Xin LI
e4e2190aed Add 3 new advisories: 
Fix devfs rules not applied by default for jails. [SA-14:07]

Fix OpenSSL use-after-free vulnerability. [SA-14:08]

Fix TCP reassembly vulnerability. [SA-14:09]
 2014-04-30 04:32:38 +00:00
Xin LI
dd97bfc0fc Add two latest security advisories: 
Fix NFS server deadlock vulnerability. [SA-14:05]

Fix OpenSSL multiple vulnerabilities. [SA-14:06]
 2014-04-08 23:27:31 +00:00
Xin LI
afa438cbd9 Reorder advisories so they appear in the right order on RSS feeds. 2014-01-14 22:08:29 +00:00
Xin LI
dcb9c59cc2 Add 4 latest advisories and 2 latest errata notices: 
Fix bsnmpd remote denial of service vulnerability. [SA-14:01]

Fix ntpd distributed reflection Denial of Service vulnerability.
[SA-14:02]

Fix OpenSSL multiple vulnerabilities. [SA-14:03]

Fix BIND remote denial of service vulnerability. [SA-14:04]

Disable hardware RNGs by default. [EN-14:01]

Fix incorrect coalescing of stack entry with mmap. [EN-14:02]
 2014-01-14 19:57:49 +00:00
Dag-Erling Smørgrav
f57acf6c24 Pre-zero the MAC context. 
Security:	CVE-2013-4548
Security:	FreeBSD-SA-13:14.openssh
Approved by:	so
 2013-11-19 10:20:35 +00:00
Dag-Erling Smørgrav
c4d9a19be3 Fix the length calculation for the final block of a sendfile(2) 
transmission which could be tricked into rounding up to the nearest
page size, leaking up to a page of kernel memory.  [13:11]

In IPv6 and NetATM, stop SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR
and SIOCSIFNETMASK at the socket layer rather than pass them on to the
link layer without validation or credential checks.  [SA-13:12]

Prevent cross-mount hardlinks between different nullfs mounts of the
same underlying filesystem.  [SA-13:13]

Security:	CVE-2013-5666
Security:	FreeBSD-SA-13:11.sendfile
Security:	CVE-2013-5691
Security:	FreeBSD-SA-13:12.ifioctl
Security:	CVE-2013-5710
Security:	FreeBSD-SA-13:13.nullfs
Approved by:	so
 2013-09-10 10:31:23 +00:00
Xin LI
b735a9d213 Add two latest advisories: 
Fix an integer overflow in computing the size of a temporary buffer
can result in a buffer which is too small for the requested
operation. [13:09]

Fix a bug that could lead to kernel memory disclosure with
SCTP state cookie. [13:10]

Add latest errata notices:

Fix a data corruption problem with mfi(4) operating on > 2TB
disks in a JBOD. [EN-13:03]
 2013-08-22 01:12:09 +00:00
Xin LI
5cffdd326e Fix order. 2013-07-27 03:43:41 +00:00
Xin LI
223eda903e Add two latest advisories: 
Fix Denial of Service vulnerability in named(8). [13:07]

  Fix a bug that allows remote client bypass the normal
  access checks when when -network or -host restrictions are
  used at the same time with -mapall. [13:08]
 2013-07-27 03:39:12 +00:00
Dag-Erling Smørgrav
037314c9bc Fix a bug that allowed a tracing process (e.g. gdb) to write 
to a memory-mapped file in the traced process's address space
even if neither the traced process nor the tracing process had
write access to that file.

Security:	CVE-2013-2171
Security:	FreeBSD-SA-13:06.mmap
Approved by:	so
 2013-06-18 07:17:53 +00:00
Glen Barber
c73cbed9bc Fix the nfsserver advisory date/link. 
Approved by:	doceng (implicit)
 2013-04-29 21:24:50 +00:00
Dag-Erling Smørgrav
d1056d0259 Fix a bug that allows NFS clients to issue READDIR on files. 
PR:		kern/178016
Security:	CVE-2013-3266
Security:	FreeBSD-SA-13:05.nfsserver
Approved by:	so
 2013-04-29 20:53:58 +00:00
Xin LI
04b880b25a Add latest security advisories: 
Fix OpenSSL multiple vulnerabilities. [13:03]

  Fix BIND remote denial of service. [13:04]

Security:	CVE-2013-0166, CVE-2013-0169
Security:	FreeBSD-SA-13:03.openssl
Security:	CVE-2013-2266
Security:	FreeBSD-SA-13:04.bind
 2013-04-02 18:01:39 +00:00
Bjoern A. Zeeb
fef748c3be Add latest security advisories: 
Fix Denial of Service vulnerability in named(8) with DNS64. [13:01]

  Fix Denial of Service vulnerability in libc's glob(3) functionality.
  [13:02]

Security:	CVE-2012-5688
Security:	FreeBSD-SA-13:01.bind
Security:	CVE-2010-2632
Security:	FreeBSD-SA-13:02.libc
 2013-02-19 13:56:49 +00:00
Xin LI
bf059192fd SA-12:08 is SA-12:08.linux. 2012-11-23 00:00:23 +00:00
Simon L. B. Nielsen
26913edc9f Add latest advisories. 2012-11-22 23:46:26 +00:00