FreeBSD Mail Archives

Date:      Mon, 13 Dec 1999 12:35:29 -0500 (EST)
From:      spork <spork@super-g.com>
To:        Kris Kennaway <kris@hub.freebsd.org>
Cc:        Mike Tancsa <mike@sentex.net>, security@FreeBSD.ORG
Subject:   Re: RSAREF updated patch (was Re: Security Advisory: Buffer  overflow in RSAREF2 (fwd))
Message-ID:  <Pine.BSF.4.00.9912131231320.15202-200000@super-g.inch.com>
In-Reply-To: <Pine.BSF.4.21.9912110231290.66028-100000@hub.freebsd.org>

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.
  Send mail to mime@docserver.cac.washington.edu for more info.

--0-1100292302-945106529=:15202
Content-Type: TEXT/PLAIN; charset=US-ASCII

I see it was committed this morning, but it appears to be broken:

ftp> get rsaref.tar
local: rsaref.tar remote: rsaref.tar                            

root@ass[/usr/ports/security]# tar xvf rsaref.tar

root@ass[/usr/ports/security/rsaref]# date
Mon Dec 13 12:31:35 EST 1999
root@ass[/usr/ports/security/rsaref]# make
===>  Extracting for rsaref-2.0
>> Checksum OK for rsaref20.1996.tar.Z.
===>  Patching for rsaref-2.0
===>  Applying FreeBSD patches for rsaref-2.0
4 out of 4 hunks failed--saving rejects to rsa.c.rej
*** Error code 4

Stop.
*** Error code 1                                          

If I back out of ver 1.2, all is well.

Just an fyi...

Thanks,

Charles

On Sat, 11 Dec 1999, Kris Kennaway wrote:

> On Fri, 10 Dec 1999, Mike Tancsa wrote:
> 
> > There seems to be another update posted to BUGTRAQ around this issue. Here
> > is part of the post.
> 
> Yes, I saw it - I'll get this committed as soon as the ports freeze for
> 3.4 is up. It's a shame this arrived a few hours after the freeze,
> although since we don't ship any rsaref-containing binaries (or any other
> crypto binaries) on CD it's not quite so bad.
> 
> Kris
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 

--0-1100292302-945106529=:15202
Content-Type: TEXT/PLAIN; charset=US-ASCII; name="rsa.c.rej"
Content-Transfer-Encoding: BASE64
Content-ID: <Pine.BSF.4.00.9912131235290.15202@super-g.inch.com>
Content-Description: rejects from applying latest ssh patch
Content-Disposition: attachment; filename="rsa.c.rej"
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--0-1100292302-945106529=:15202--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.00.9912131231320.15202-200000>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation