diff options
| author | Colin Percival <cperciva@FreeBSD.org> | 2009-04-22 14:07:14 +0000 |
|---|---|---|
| committer | Colin Percival <cperciva@FreeBSD.org> | 2009-04-22 14:07:14 +0000 |
| commit | 57895cdc764809ad29336431ee6b43c68fe15f15 (patch) | |
| tree | ee06066b1e128e876793d149c7f3c844851f69a8 /UPDATING | |
| parent | cff0c03ef7b93d6ab09a8ce2ab009348e5c7aecd (diff) | |
Don't leak information via uninitialized space in db(3) records. [09:07]releng/7.0
Sanity-check string lengths in order to stop OpenSSL crashing
when printing corrupt BMPString or UniversalString objects. [09:08]
Security: FreeBSD-SA-09:07.libc
Security: FreeBSD-SA-09:08.openssl
Security: CVE-2009-0590
Approved by: re (kensmith)
Approved by: so (cperciva)
Notes
Notes:
svn path=/releng/7.0/; revision=191381
Diffstat (limited to 'UPDATING')
| -rw-r--r-- | UPDATING | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -8,6 +8,13 @@ Items affecting the ports and packages system can be found in /usr/ports/UPDATING. Please read that file before running portupgrade. +20090422: p12 FreeBSD-SA-09:07.libc, FreeBSD-SA-09:08.openssl + Don't leak information via uninitialized space in db(3) records. + [09:07] + + Sanity-check string lengths in order to stop OpenSSL crashing + when printing corrupt BMPString or UniversalString objects. [09:08] + 20090323: p11 FreeBSD-SA-09:06.ktimer, FreeBSD-EN-09:01.kenv Correctly sanity-check timer IDs. [SA-09:06] |