Date: Thu, 18 Dec 2014 17:40:50 +0100 From: FreeBSD Security Officer <security-officer@FreeBSD.org> To: freebsd-announce@freebsd.org Subject: [FreeBSD-Announce] [HEADS UP] freebsd-update issues in 10.1 Message-ID: <86egrwoqr1.fsf@nine.des.no>
next in thread | raw e-mail | index | archive | help
--=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Dear FreeBSD community, As many of you have noticed, running freebsd-update on FreeBSD 10.1 amd64 systems produces unexpected results, including reinstalling the 32-bit compatibility libraries (lib32) on systems where they are not installed and claiming to want to remove the root directory. When FreeBSD 10.1 was released, the lib32 component was inadvertantly left out of the baseline used to generate freebsd-update patches. The consequences are twofold: first, users upgrading from 10.0 to 10.1 would lose lib32; and second, users who had either installed 10.1 from scratch or manually reinstalled lib32 after freebsd-update removed it would not receive patches for it. When this issue was discovered, we were faced with two options: either ignore it or use the next update to re-add lib32. The latter was considered the lesser of two evils, as it was the only way to ensure that lib32 receives security updates. An unfortunate side effect is that freebsd-update will now recreate lib32 even on systems where it was intentionally left out or removed. Users who do not wish to have lib32 installed should replace "world" with "world/base" on the "Components" line in /etc/freebsd-update.conf. The second issue, attempting to remove '/', seems to be the consequence of a bug in the freebsd-update build process which we do not yet fully understand, but which results in an incorrect index for the lib32 component. We hope to be able to correct this (at the latest) when we next publish an advisory. In the meantime, the error can safely be ignored, as freebsd-update will not actually remove anything. Users who have disabled lib32 in /etc/freebsd-update.conf as described above are not affected. DES =2D-=20 Dag-Erling Sm=C3=B8rgrav - FreeBSD Security Officer --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJUkwOSAAoJEO1n7NZdz2rnQuAP/0r4Piqtak6meI1KADKubm8h LKtzSkpjA+Dp7n5FVjuIuxZOR1TRRinavZ1gxdiiOFwSaSioniyfSaCwx00wbcbY gbaJV2Bn+Ra/u3HS2U4kJBirZzTILK+8Tn0pahZ7/Y/H3f+xGvBHR5Xt2F8cf1N3 4E14cM+RbwUrQwa4hkgja+OiTyb4C9BSkl5b22e2kpvd9gIGeRHfOjOn8EwqPaQz HwF9Hj9eODZFCum0sSWmYNLFSuWOoNgnQdtDpsj1nxg5Kg4kSdoDiyAjaa/s+e+l 4GJyNsCGRpFoIdm9GjSb4/lXEs2qAXR+YJN5SmXtPM+7tqvi22BnHdbnJlFDxqaQ heq9+KdtfzdLiiUmONqJXb+n7VCgLx8BRKQDCLQ+uCrd6+NDMDhASG3zMyMzmhbU fJakaqr2ykcQKL+dwK8F8+EQtjAhRAjxNYkJiPOph6Mba52mOOrkCDi6VnpXOG8q YmtQCuXcjshiPegQNAUmBrpPwCnTUEU+tlfpIz852Ktrqs0s/vZPgA6Ln/J1V38j AOwgcUETO5Cmf/uzvDh0J6/bSUV73Hfth2ya5P462+Z35OC6ZpWjMoCJ080o3u8U 8+8gC8EPYzUKkMd8dF+fZULbzBCBq7+MgHCYBIdm6wmiNbp2JQR0U//QV0t3wknW E7sAu+iOowsMB4MVGZyr =TapW -----END PGP SIGNATURE----- --=-=-=--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86egrwoqr1.fsf>