Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 01 Apr 2003 20:41:34 +0900 (JST)
From:      FreeBSD Security Advisories <security-advisories@FreeBSD.ORG>
To:        freebsd-chat@FreeBSD.org
Subject:   FreeBSD Security Advisory FreeBSD-SA-03:99.freebsd-sa
Message-ID:  <20030401.204134.48514670.hrs@eos.ocn.ne.jp>
next in thread | raw e-mail | index | archive | help 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=============================================================================
FreeBSD-SA-03:99.freebsd-sa                                 Security Advisory
                                                          The FreeBSD Project

Topic:          potential Y2K problem in FreeBSD Security Advisory

Category:       security
Module:         security_notification
Announced:      2003-04-01
Credits:        Anonymous Paranoia
Affects:        All releases of FreeBSD
Corrected:      not yet
FreeBSD only:   YES

I.   Background

FreeBSD Security Advisory is a security notification from FreeBSD
Security Officer when a critical vulnerability of FreeBSD is identified.

II.  Problem Description

Each FreeBSD Security Advisory is given a number like FreeBSD-SA-03:01.
`03' indicates the advisory is published in 2003, and `01' indicates
the advisory is the 1st one in the year.  Because the former consists
of a number with two digits, a integer overflow may occur when (or after?,
it depends) you will die of old age.  FreeBSD Security Advisory has
been published since 1996.

III. Impact

Y2K nightmare will strike back in 2100, and before that,
the security officer will certainly be troubled in 2096.

IV.  Workaround

There is no workaround.

V.   Solution

Execute the following commands:

a) for advisories issued before 2000:

 % cat /path/to/FreeBSD-SA-XX:XX.txt.asc\
   | sed -e 's/FreeBSD-SA-\([0-9]*\):\([0-9]*\)/FreeBSD-SA-19\1:\2/g'

b) for advisories issued between 2000 and 2099:

 % cat /path/to/FreeBSD-SA-XX:XX.txt.asc\
   | sed -e 's/FreeBSD-SA-\([0-9]*\):\([0-9]*\)/FreeBSD-SA-20\1:\2/g'

c) for advisories issued after 2100:

 % cat /path/to/FreeBSD-SA-XX:XX.txt.asc\
   | sed -e 's/FreeBSD-SA-\([0-9]*\):\([0-9]*\)/FreeBSD-SA-21\1:\2/g'

NOTE: Once you know when an advisory was issued, you may notice
      that the problem is insignificant.  Yes, you are right.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (FreeBSD)

iD8DBQE+iXmUTyzT2CeTzy0RAubPAKC7sk17vqBCIxsWw30KczXiJ0wyuQCg2kEi
Opx6aV/qNQWLoeAPDIuF+IA=
=ETbS
-----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030401.204134.48514670.hrs>