Date: Thu, 9 May 2002 11:37:26 -0500 From: "Kevin Kinsey, DaleCo, S.P." <kdk@daleco.biz> To: <brano@zahrobie.sk> Cc: <security@freebsd.org> Subject: Re: FreeBSD-SA-02:08 Message-ID: <00c101c1f777$ce855ce0$abe2910c@daleco> References: <3CD8558E.2FA68C36@lumeta.com> <064601c1f68f$ae8e4480$c28c630a@bb.ubp.sk> <200205091628.g49GSGKG041778@intruder.bmah.org>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message ----- From: "Bruce A. Mah" <bmah@FreeBSD.ORG> To: "[brano]" <brano@zahrobie.sk> Cc: <freebsd-security@FreeBSD.ORG> Sent: Thursday, May 09, 2002 11:28 AM Subject: Re: FreeBSD-SA-02:08 > If memory serves me right, "[brano]" wrote: > > > I have FreeBSD 4.5-RELEASE and i compile my own kernel. I need to apply > > patch FreeBSD-SA-02:08 ? > > I'm look at file src/sys/conf/newvers.sh which have: > > # $FreeBSD: src/sys/conf/newvers.sh,v 1.44.2.20.2.1 2002/01/28 06:42:16 > > murray Exp $ > > and in patch file is write 1.44.2.17.2.5 Revision > > then I need apply this patch ? > > No need. > > If you look in the release notes that come with FreeBSD 4.5-RELEASE, > you'll see that it already includes the fix for FreeBSD-SA-02:08. > > Good luck, > > Bruce. > However, there have been about 6 core issues since 4.5 Release. Look at SA-02:13, SA-02:18, SA-02:20-23.... A number of folks have mentioned possible successful attacks via the stdio exploit. Kevin Kinsey To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00c101c1f777$ce855ce0$abe2910c>