From owner-freebsd-questions  Fri Jul  5 16:25: 7 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 83DF637B400
	for <questions@freebsd.org>; Fri,  5 Jul 2002 16:25:04 -0700 (PDT)
Received: from clink.schulte.org (clink.schulte.org [209.134.156.193])
	by mx1.FreeBSD.org (Postfix) with ESMTP id EA13F43E09
	for <questions@freebsd.org>; Fri,  5 Jul 2002 16:25:03 -0700 (PDT)
	(envelope-from schulte+freebsd@nospam.schulte.org)
Received: from localhost (localhost [127.0.0.1])
	by clink.schulte.org (Postfix) with ESMTP
	id A9FEC243C2; Fri,  5 Jul 2002 18:25:02 -0500 (CDT)
Received: from tandist.nospam.schulte.org (void.schulte.org [209.134.156.217])
	by clink.schulte.org (Postfix) with ESMTP
	id 472EB243C0; Fri,  5 Jul 2002 18:25:00 -0500 (CDT)
Message-Id: <5.1.1.6.2.20020705182059.038a3b70@pop3s.schulte.org>
X-Sender: 
X-Mailer: QUALCOMM Windows Eudora Version 5.1.1
Date: Fri, 05 Jul 2002 18:24:59 -0500
To: freebsd-reply@akruijff.dds.nl,
	User 109 <user109@thefront.homelinux.org>
From: Christopher Schulte <schulte+freebsd@nospam.schulte.org>
Subject: Re: Upgrade
Cc: questions@freebsd.org
In-Reply-To: <17749728615.20020706010725@dds.nl>
References: <Pine.LNX.4.44.0207051230190.7080-100000@thefront.homelinux.org>
 <Pine.LNX.4.44.0207051230190.7080-100000@thefront.homelinux.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
X-Virus-Scanned: by AMaViS 0.3.12pre6 on clink.schulte.org
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

At 01:07 AM 7/6/2002 +0200, Alex wrote:
>U1> I want to patch 4.4 production machines for the libc & ssh issue, without
>
>RELENG_4_4 - security updates and seriously critical fixes for 4.4
>RELENG_4_4_0_RELEASE - original source (not recommended)

According to the security advisory, RELENG_4_4 was not fixed in regards to 
the resolver bug.  4.4 is not a supported release.

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:28.resolv.asc

Second, no security advisory was released for the most recent OpenSSH 
bug(s), as the version shipped was not vulnerable.  However, there were 
other problems with the OpenSSH that was whipped with FreeBSD 
4.4-RELEASE.  See http://www.freebsd.org/security/index.html for all the 
security advisories.

--
Christopher Schulte
http://www.schulte.org/
Do not un-munge my @nospam.schulte.org
email address.  This address is valid.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message