From owner-freebsd-security@FreeBSD.ORG Thu Dec 29 18:56:42 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DC79D106566B for ; Thu, 29 Dec 2011 18:56:42 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from anubis.delphij.net (anubis.delphij.net [IPv6:2001:470:1:117::25]) by mx1.freebsd.org (Postfix) with ESMTP id C02828FC08 for ; Thu, 29 Dec 2011 18:56:42 +0000 (UTC) Received: from delta.delphij.net (drawbridge.ixsystems.com [206.40.55.65]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by anubis.delphij.net (Postfix) with ESMTPSA id 871D917C3B; Thu, 29 Dec 2011 10:56:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=delphij.net; s=anubis; t=1325185002; bh=PO4uCGdywHbgUeLm91C7mx76/NTLT2GhCJR1VOimXn4=; h=Message-ID:Date:From:Reply-To:MIME-Version:To:CC:Subject: References:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=P1jZLEpJbtbPr0VHwd6AE0+26d/1UrWbCRjfoXEKQUiuq1k1Iut9HxIfVzsTFpI8S lsTWYNZdnCV5eRJEhL0aR60TlxLXibqQMnbFnvZzdZZwehpmr6grHp4+bR77OvlhIE u9D7PBMiteSZKgQcjJI+2Ko8TsvEk6Qd6gF3Zjz0= Message-ID: <4EFCB7E9.1040506@delphij.net> Date: Thu, 29 Dec 2011 10:56:41 -0800 From: Xin Li Organization: The FreeBSD Project MIME-Version: 1.0 To: Patrick Proniewski References: <201112231536.pBNFaoj3078926@freefall.freebsd.org> In-Reply-To: X-Enigmail-Version: undefined Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Cc: freebsd-security@freebsd.org, d@delphij.net Subject: Re: FreeBSD Security Advisory FreeBSD-SA-11:09.pam_ssh X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: d@delphij.net List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Dec 2011 18:56:42 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12/29/11 10:32, Patrick Proniewski wrote: > Hello, > > On 23 déc. 2011, at 16:36, FreeBSD Security Advisories wrote: > >> 3) To update your vulnerable system via a binary patch: >> >> Systems running 7.4-RELEASE, 7.3-RELEASE, 8.2-RELEASE, or >> 8.1-RELEASE on the i386 or amd64 platforms can be updated via the >> freebsd-update(8) utility: >> >> # freebsd-update fetch # freebsd-update install > > This is strange, before update I was 8.1-RELEASE-p5, during update > freebsd-update wrote about 8.1-RELEASE-p7, and after update I'm > still running 8.1-RELEASE-p5... > > after upgrade: > > # freebsd-update fetch Looking up update.FreeBSD.org mirrors... 4 > mirrors found. Fetching metadata signature for 8.1-RELEASE from > update5.FreeBSD.org... done. Fetching metadata index... done. > Inspecting system... done. Preparing to download files... done. > > No updates needed to update system to 8.1-RELEASE-p7. > > # uname -r 8.1-RELEASE-p5 > > any idea? Have you restarted your system? I *think* it should say -p6 there because this batch does not change kernel (last batch did change kernel but I guess you already patched?) Cheers, - -- Xin LI https://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk78t+kACgkQOfuToMruuMBwmgCePWMVTe9x9LVcQts9FJbq+u8F bfYAnj1fw0PgtQ1UzfyrHcKocufWuD4e =HfUi -----END PGP SIGNATURE-----