From owner-freebsd-security@FreeBSD.ORG Tue Jun 8 10:18:49 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C74816A4CE for ; Tue, 8 Jun 2004 10:18:49 +0000 (GMT) Received: from tx3.oucs.ox.ac.uk (tx3.oucs.ox.ac.uk [163.1.2.167]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5E32F43D1F for ; Tue, 8 Jun 2004 10:18:46 +0000 (GMT) (envelope-from colin.percival@wadham.ox.ac.uk) Received: from scan3.oucs.ox.ac.uk ([163.1.2.166] helo=localhost) by tx3.oucs.ox.ac.uk with esmtp (Exim 4.24) id 1BXdgj-0007aE-Nb for freebsd-security@freebsd.org; Tue, 08 Jun 2004 11:18:37 +0100 Received: from rx3.oucs.ox.ac.uk ([163.1.2.165]) by localhost (scan3.oucs.ox.ac.uk [163.1.2.166]) (amavisd-new, port 25) with ESMTP id 28872-07 for ; Tue, 8 Jun 2004 11:18:37 +0100 (BST) Received: from gateway.wadham.ox.ac.uk ([163.1.161.253]) by rx3.oucs.ox.ac.uk with smtp (Exim 4.24) id 1BXdgj-0007a9-AA for freebsd-security@freebsd.org; Tue, 08 Jun 2004 11:18:37 +0100 Received: (qmail 23673 invoked by uid 1004); 8 Jun 2004 10:18:37 -0000 Received: from colin.percival@wadham.ox.ac.uk by gateway by uid 71 with qmail-scanner-1.20 (clamscan: 0.67. sweep: 2.18/3.79. Clear:RC:1(163.1.161.131):. Processed in 0.356764 secs); 08 Jun 2004 10:18:37 -0000 Received: from dhcp1131.wadham.ox.ac.uk (HELO piii600.wadham.ox.ac.uk) (163.1.161.131) by gateway.wadham.ox.ac.uk with SMTP; 8 Jun 2004 10:18:36 -0000 Message-Id: <6.1.0.6.1.20040608105255.02e78ba0@popserver.sfu.ca> X-Sender: cperciva@popserver.sfu.ca (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 6.1.0.6 Date: Tue, 08 Jun 2004 11:18:34 +0100 To: freebsd-security@freebsd.org From: Colin Percival In-Reply-To: <20040607210614.112DF33C75@dwp.des.no> References: <20040607210614.112DF33C75@dwp.des.no> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Subject: Re: FreeBSD Security Advisory FreeBSD-SA-04:12.jailroute X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Jun 2004 10:18:49 -0000 At 22:06 07/06/2004, FreeBSD Security Advisories wrote: >FreeBSD-SA-04:12.jailroute Security Advisory >Affects: All FreeBSD 4.x releases prior to 4.10-RELEASE As a few people have noted, this should read "FreeBSD 4.8 and 4.9"; this bug never existed in earlier versions of FreeBSD. That said, FreeBSD 4.7 and earlier are no longer officially supported, and it is highly recommended that people upgrade to a newer version, since there have been recent security advisories concerning issues to which earlier releases are still vulnerable. >V. Solution >Do one of the following: > >1) Upgrade your vulnerable system to 4.10-RELEASE, or to the RELENG_4_8 >or RELENG_4_9 security branch dated after the correction date. > >OR > >2) Patch your present system: or, as usual, 3) If you are running an affected release, you can use FreeBSD Update: # cd /usr/ports/security/freebsd-update && make all install # cp /usr/local/etc/freebsd-update.conf.sample /usr/local/etc/freebsd-update.conf # /usr/local/sbin/freebsd-update fetch # /usr/local/sbin/freebsd-update install For more details, see http://www.daemonology.net/freebsd-update/ . Note that this is something I'm providing personally; it is in no way endorsed by the Security Officer or the Project as a whole. Colin Percival