Date: Sat, 31 May 2003 10:39:43 +0100 From: Colin Percival <colin.percival@wadham.ox.ac.uk> To: freebsd-security@freebsd.org Subject: Advisory: security/freebsd-update port Message-ID: <5.0.2.1.1.20030531095329.047965e0@popserver.sfu.ca>
next in thread | raw e-mail | index | archive | help
Topic: Potential failure to update vulnerable files Synopsis: FreeBSD Update is a system for tracking FreeBSD release (aka security) branches via signed binary updates. At present, updates are being built for FreeBSD 4.7-RELEASE and 4.8-RELEASE. As a result of differences between the ISO image and FTP distributions of 4.7-RELEASE, FreeBSD Update may have failed to recognize certain files as needing replacement. Based on server logs, I believe up to 20 people may have been affected by this. Impact: Some security patches might have not been applied, potentially leaving a system open to attack. Fix: Run FreeBSD Update again; it will fetch the latest update index, which corrects this issue. Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.1.20030531095329.047965e0>