Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath

• Previous message: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• In reply to: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Next in thread: Chris Howells: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Reply: Chris Howells: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Reply: Colin Percival: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 04 Aug 2003 00:54:00 -0700
To: freebsd-security@freebsd.org

At 17:04 03/08/2003 -0700, you wrote:
>V. Solution
>2) To patch your present system:
>a) Download the relevant patch...
>b) Apply the patch...
>c) Recompile your operating system...

   I hesitate to suggest that people leave their systems unpatched for
longer than absolutely necessary, but there *will* be binary patches
available for 4.7-RELEASE and 4.8-RELEASE -- as soon as I finish building
them (ETA about 17 hours). This only applies to people who performed a
binary install of FreeBSD 4.7 or 4.8 ***and have not recompiled the world
locally***.
   Affected applications which were statically linked to the vulnerable
code would still need to be recompiled.

   Once the binary updates are available, FreeBSD Update
(security/freebsd-update in the ports tree) will be able to fetch and
install them; I'll send another email to this list after they've been
built, signed, and uploaded.

Colin Percival

_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• In reply to: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Next in thread: Chris Howells: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Reply: Chris Howells: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Reply: Colin Percival: "Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Purpose of defmethod ... Frode Vatvedt Fjeld wrote: ... and patch them if the function gets redefined. ... you need to recompile the call ... have to recalculate the program counter. ... (comp.lang.lisp) Re: FreeBSD Security Advisory FreeBSD-SA-03:18.openssl ... On Fri, 3 Oct 2003, FreeBSD Security Advisories wrote: ... statically linked against librypto or libssl in the base system? ... from what I can see no API is changed with this patch so wouldn't it be ... possible to recompile libssl/libcrypto and install only them instead of ... (FreeBSD-Security) Re: MS Windows & maximized windows ... > Hello Matteo, ... > the lisp patch will also help. ... I finally found time to apply the patch. ... Maybe in the week-end I'll find time to apply the C patch and recompile ... ... (comp.emacs.xemacs) Re: [Full-Disclosure] Is Mozillas "patch" enough? ... >> That's why there should be a way to uninstall the patch, ... > This requires that you have individual patches for each vulnerability, ... > You simply pick the parts you like and recompile your own version. ... (Full-Disclosure) detecting overheating processors? ... I'm seeing something very interesting with FreeBSD Update: ... MD5 hashes, applying patches, and checking the MD5 hashes of the ... Update have downloaded several patch files, ... (freebsd-current)