From owner-freebsd-security@freebsd.org  Thu Sep  3 12:16:26 2020
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 641C83E4566
 for <freebsd-security@mailman.nyi.freebsd.org>;
 Thu,  3 Sep 2020 12:16:26 +0000 (UTC)
 (envelope-from tech-lists@zyxst.net)
Received: from wout2-smtp.messagingengine.com (wout2-smtp.messagingengine.com
 [64.147.123.25])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 4Bj0CY48mQz4LXd
 for <freebsd-security@freebsd.org>; Thu,  3 Sep 2020 12:16:25 +0000 (UTC)
 (envelope-from tech-lists@zyxst.net)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43])
 by mailout.west.internal (Postfix) with ESMTP id 808DAF7A
 for <freebsd-security@freebsd.org>; Thu,  3 Sep 2020 08:16:23 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162])
 by compute3.internal (MEProxy); Thu, 03 Sep 2020 08:16:23 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zyxst.net; h=
 date:from:to:subject:message-id:references:mime-version
 :content-type:in-reply-to; s=fm3; bh=Hb9xtZIYRjEd31VWieWqAlblapT
 +4viFg8vWvM2K7Nw=; b=G7Cs8mXqAblr1+A7SXBQMYWycAJJFUNcwdnJARSe85O
 CrAaFi1lquOlI/1TlT8Ho5c0DXx5XHKLuuAR+ike8pI5VLE3f+TIwpm49nfXyJV/
 ouV2DXFX964MIE75C4eNQ+oqp8G2eC64Rc8srqOouTu4H0g6QHUU+B8jgBxfBLHz
 fZpa4y6KNQOVbGO1auu0JlQOT0y/O16mrl5/bqWGzUel4ZPs5aSh+LPPsdJrV96M
 isd6yM3+ZoeJ04OifAEwC5TpQyO10bYG7T8SQqzrtsL5L/Js3P94SlIBc1tSfHQm
 nH2+nO15bYObxqrOY5VjOUudL/7z5h8dJb2wyd2jjpQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
 messagingengine.com; h=content-type:date:from:in-reply-to
 :message-id:mime-version:references:subject:to:x-me-proxy
 :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=Hb9xtZ
 IYRjEd31VWieWqAlblapT+4viFg8vWvM2K7Nw=; b=tt9mnzHrXgujnB0OcsZlWP
 jJzTPe008yT/IGI99btEZ68z/vXOLU5upw28mZiQz/s6G47izNn3G2cvRUp3KlNI
 V6Yyf1Xjtfc82UuA7BZJfK/Qbvc+SONOn5S2IssMHKDNZijTwUw36N6IGgXp2D3q
 zoAVaZQ4YleUFJErfbuJR6qxmhp6FoCZHvX9HZGeTX1vjTZBqK4vXQB0uI9Rsbkb
 rqBrJGe03D6nj7chasbJGWQdOdixuMlOPIk7KO75gneaMPhN5CJ1fCVzF+u9t42+
 H537nZ6ZP1F8mR9tFGuWlCC8xati7YRZlcXYoaOrSxQxCzIJtc43OxP259tdADtw
 ==
X-ME-Sender: <xms:lt5QX8T5q6tY8hPzBxyKeDP2Mem1dL6eIkyiP6DiAqfG-Fpah7PFxg>
 <xme:lt5QX5yMRRv-fm8RsOvsK22LVLkszk3jiFfwuHO_lpAzFogvJpqwTBijIGWgPUyoQ
 NppMqqZ5_CR6u_B1w>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrudeguddgheduucetufdoteggodetrfdotf
 fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen
 uceurghilhhouhhtmecufedttdenucenucfjughrpeffhffvuffkfhggtggujgesghdtre
 ertddtudenucfhrhhomhepthgvtghhqdhlihhsthhsuceothgvtghhqdhlihhsthhsseii
 hiigshhtrdhnvghtqeenucggtffrrghtthgvrhhnpeevffeujefggefhfeekudetvdehtd
 ehudfgffeigeefveefheegvddvtdehffeljeenucfkphepkedvrdejtddrledurdelleen
 ucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehtvggthh
 dqlhhishhtshesiiihgihsthdrnhgvth
X-ME-Proxy: <xmx:lt5QX51eIfj-huFJAT0T3FU6Dm33J62Wq5oWo55pgm1FN3Sv3K70Ag>
 <xmx:lt5QXwDD1UTrfDfOfQEE6ZNog41OUIdmy422_ABXPZ3nPHJa9OJqVQ>
 <xmx:lt5QX1jLeVzjBth2vPs1GDCloVSUSfXWnCGntz0Hzr6BEgsd2q7yGg>
 <xmx:l95QXwtZ8FLBiFfQaopY1r8hYklv6nZTG-gx6trneBY9KoWnQX3Grw>
Received: from bastion.zyxst.net (bastion.zyxst.net [82.70.91.99])
 by mail.messagingengine.com (Postfix) with ESMTPA id 6EA693280060
 for <freebsd-security@freebsd.org>; Thu,  3 Sep 2020 08:16:22 -0400 (EDT)
Date: Thu, 3 Sep 2020 13:15:53 +0100
From: tech-lists <tech-lists@zyxst.net>
To: freebsd-security@freebsd.org
Subject: Re: A question about Security Advisories
Message-ID: <20200903121553.GA80905@bastion.zyxst.net>
Mail-Followup-To: freebsd-security@freebsd.org
References: <49a1d50c-34d1-239f-1d52-1ebba6799d62@shurik.kiev.ua>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature"; boundary="VbJkn9YxBvnuCH5J"
Content-Disposition: inline
In-Reply-To: <49a1d50c-34d1-239f-1d52-1ebba6799d62@shurik.kiev.ua>
X-Rspamd-Queue-Id: 4Bj0CY48mQz4LXd
X-Spamd-Bar: ----
Authentication-Results: mx1.freebsd.org;
 dkim=pass header.d=zyxst.net header.s=fm3 header.b=G7Cs8mXq;
 dkim=pass header.d=messagingengine.com header.s=fm3 header.b=tt9mnzHr;
 dmarc=none;
 spf=pass (mx1.freebsd.org: domain of tech-lists@zyxst.net designates
 64.147.123.25 as permitted sender) smtp.mailfrom=tech-lists@zyxst.net
X-Spamd-Result: default: False [-4.57 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[];
 ARC_NA(0.00)[];
 R_DKIM_ALLOW(-0.20)[zyxst.net:s=fm3,messagingengine.com:s=fm3];
 NEURAL_HAM_MEDIUM(-0.98)[-0.980]; FROM_HAS_DN(0.00)[];
 RWL_MAILSPIKE_GOOD(0.00)[64.147.123.25:from];
 TO_MATCH_ENVRCPT_ALL(0.00)[];
 R_SPF_ALLOW(-0.20)[+ip4:64.147.123.25];
 MIME_GOOD(-0.20)[multipart/signed,text/plain];
 PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org];
 TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1];
 NEURAL_HAM_LONG(-1.00)[-0.997]; RCVD_COUNT_THREE(0.00)[4];
 DMARC_NA(0.00)[zyxst.net]; NEURAL_SPAM_SHORT(0.11)[0.107];
 DKIM_TRACE(0.00)[zyxst.net:+,messagingengine.com:+];
 SIGNED_PGP(-2.00)[]; FROM_EQ_ENVFROM(0.00)[];
 MIME_TRACE(0.00)[0:+,1:+,2:~]; RCVD_TLS_LAST(0.00)[];
 ASN(0.00)[asn:11403, ipnet:64.147.123.0/24, country:US];
 MAILMAN_DEST(0.00)[freebsd-security];
 RCVD_IN_DNSWL_LOW(-0.10)[64.147.123.25:from]
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.33
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Sep 2020 12:16:26 -0000


--VbJkn9YxBvnuCH5J
Content-Type: text/plain; charset=iso-8859-1; format=flowed
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi,

On Tue, Aug 11, 2020 at 10:21:07AM +0300, Oleksandr Kryvulia wrote:
>
> =A0Hi,
>Last years all Security Advisories regarding base system in the "update
>your vulnerable system via a source code patch " section recommends to
>rebuild a whole world instead of an affected part of a base system. This
>is in a most cases an overhead.
>
>For example 9 years old SA-11:04 [1] offers:
>
>b) Execute the following commands as root:
>
># cd /usr/src
># patch < /path/to/patch
># cd /usr/src/usr.bin/compress
># make obj && make depend && make && make install
># cd /usr/src/usr.bin/gzip
># make obj && make depend && make && make install
>
>What is a reason we stop to do it? I understand that the preferred way
>now is a binary upgrade.

+1 I've been wondering this as well. What is the reason for it?
--=20
J.

--VbJkn9YxBvnuCH5J
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=baJn
-----END PGP SIGNATURE-----

--VbJkn9YxBvnuCH5J--