Advisory: security/freebsd-update port

From: Colin Percival (colin.percival_at_wadham.ox.ac.uk)
Date: 05/31/03

• Previous message: Vandyuk Eugene: "Packet flow through IPFW+IPF+IPNAT ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sat, 31 May 2003 10:39:43 +0100
To: freebsd-security@freebsd.org

Topic: Potential failure to update vulnerable files

Synopsis: FreeBSD Update is a system for tracking FreeBSD
                release (aka security) branches via signed
                binary updates. At present, updates are being
                built for FreeBSD 4.7-RELEASE and 4.8-RELEASE.
                As a result of differences between the ISO image
                and FTP distributions of 4.7-RELEASE, FreeBSD
                Update may have failed to recognize certain
                files as needing replacement. Based on server
                logs, I believe up to 20 people may have been
                affected by this.

Impact: Some security patches might have not been
                applied, potentially leaving a system open to
                attack.

Fix: Run FreeBSD Update again; it will fetch the
                latest update index, which corrects this issue.

Colin Percival

_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

---

• Previous message: Vandyuk Eugene: "Packet flow through IPFW+IPF+IPNAT ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2003-05