From owner-freebsd-security@FreeBSD.ORG Thu Dec 3 15:37:06 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A2CC3106566B for ; Thu, 3 Dec 2009 15:37:06 +0000 (UTC) (envelope-from henrique@cssg.g12.br) Received: from a.mx.cssg.g12.br (arigao.cssg.g12.br [201.88.203.12]) by mx1.freebsd.org (Postfix) with SMTP id 93BD68FC1B for ; Thu, 3 Dec 2009 15:37:05 +0000 (UTC) Received: (qmail 85322 invoked from network); 3 Dec 2009 15:29:40 -0000 Received: from unknown (172.16.24.3) by 172.16.24.4 with QMQP; 3 Dec 2009 15:29:40 -0000 Received: from unknown (HELO ?172.16.1.254?) (henrique@cssg.g12.br@172.16.1.254) by proxy.local.cssg.g12.br with ESMTPA; 3 Dec 2009 15:29:40 -0000 From: Henrique Araujo To: freebsd-security@freebsd.org In-Reply-To: <200912030930.nB39UhPQ038263@freefall.freebsd.org> References: <200912030930.nB39UhPQ038263@freefall.freebsd.org> Content-Type: text/plain; charset="iso8859-1" Organization: =?ISO-8859-1?Q?Col=E9gio?= Salesiano =?ISO-8859-1?Q?S=E3o?= =?ISO-8859-1?Q?_Gon=E7alo?= Date: Thu, 03 Dec 2009 12:33:39 -0300 Message-ID: <1259854419.33763.10.camel@cpd1.local.cssg.g12.br> Mime-Version: 1.0 X-Mailer: Evolution 2.28.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 8bit Subject: Re: FreeBSD Security Advisory FreeBSD-SA-09:16.rtld X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Dec 2009 15:37:06 -0000 Em Qui, 2009-12-03 ās 09:30 +0000, FreeBSD Security Advisories escreveu: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > ============================================================================= > FreeBSD-SA-09:16.rtld Security Advisory > The FreeBSD Project > > Topic: Improper environment sanitization in rtld(1) > > Category: core > Module: rtld > Announced: 2009-12-03 > Affects: FreeBSD 7.0 and later. > Corrected: 2009-12-01 02:59:22 UTC (RELENG_8, 8.0-STABLE) > 2009-12-03 09:18:40 UTC (RELENG_8_0, 8.0-RELEASE-p1) > 2009-12-01 03:00:16 UTC (RELENG_7, 7.2-STABLE) > 2009-12-03 09:18:40 UTC (RELENG_7_2, 7.2-RELEASE-p5) > 2009-12-03 09:18:40 UTC (RELENG_7_1, 7.1-RELEASE-p9) > CVE Name: CVE-2009-4146, CVE-2009-4147 > [...] I think it's only cosmetic, but I couldn't see any change in the BRANCH (7.2: p4 -> p4?). Henrique