<< Previous Next >>
revision
hpuxws22APACHE.MOD_JK2
hpuxws22APACHE.MOD_PERL
hpuxws22APACHE.MOD_PERL2
hpuxws22APACHE.PHP
hpuxws22APACHE.PHP2
action: install revision B.2.2.8.09 or subsequent
HP-UX B.11.31
==================
hpuxws22APCH32.APACHE
hpuxws22APCH32.APACHE2
HpuxDirSvr.GUI-RUN
HpuxDirSvr.GUI-SHARED
HpuxDirSvr.SLAPD-DEVEL
HpuxDirSvr.SLAPD-RUN
HpuxDirSvr.SLAPD-SHARED
action: install revision B.08.10.03 or subsequent
HP-UX B.11.31
==================
HpuxDirSvr.ADMSVR-RUN
HpuxDirSvr.ADMSVR-SHARED
Cisco Security Advisory: Cisco IOS XR Software Border Gateway
Protocol Vulnerability
Advisory ID: cisco-sa-20100827-bgp
Revision 1.0
For Public Release 2010 August 27 2200 UTC (GMT)
+---------------------------------------------------------------------
Cisco Security Advisory: Cisco IOS XR Software SSHv1 Denial of Service Vulnerability
Advisory ID: cisco-sa-20110525-iosxr-ssh
Revision 1.0
For Public Release 2011 May 25 1600 UTC (GMT)
+---------------------------------------------------------------------
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit <URL:http://security.FreeBSD.org/>.
0. Revision History
v1.0 2011-09-28 Initial release.
v1.1 2011-10-04 Updated patch to add linux emulation bug fix.
I. Background
B.11.23 (PA and IA) / DNSUPGRADE_C.9.3.2.9.0_HP-UX_B.11.23_IA_PA.depot
B.11.31 (PA and IA) / HPUX-NameServer_C.9.3.2.10.0_HP-UX_B.11.31_IA_PA.depot
The new (revision 2 of this bulletin) BIND 9.2 upgrades are available from the following location
ftp://s02729:Secure12@ftp.usa.hp.com
HP-UX Release / BIND 9.2 Depot Name
B.11.11 PA (32 and 64) / BIND92-1111-wu17.depot
DNSUPGRADE_C.9.3.2.9.0_HP-UX_B.11.23_IA_PA.depot
B.11.31 (PA and IA)
HPUX-NameServer_C.9.3.2.10.0_HP-UX_B.11.31_IA_PA.depot
The new (revision 2 of this bulletin) BIND 9.2 upgrades are available from the following location
ftp://s02729:Secure12@ftp.usa.hp.com
HP-UX Release
BIND 9.2 Depot Name
Cisco Security Advisory: Cisco IOS Software Network Time Protocol
Packet Vulnerability
Advisory ID: cisco-sa-20090923-ntp
Revision 1.0
For Public Release 2009 September 23
+---------------------------------------------------------------------
# cd /usr/src/libexec/telnetd
# make obj && make depend && make && make install
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
<URL:http://www.FreeBSD.org/handbook/kernelconfig.html> and reboot the
system.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
<URL:http://www.FreeBSD.org/handbook/kernelconfig.html> and reboot the
system.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
by the owner only. The system administrator should determine the
appropriate mode bits wisely.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
can be done either by upgrading to FreeBSD 7.x or later, or installing
BIND for the FreeBSD Ports Collection.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
# make obj && make depend && make && make install
# chmod 0700 /var/db/freebsd-update
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
* Apply the following patch for krb5-1.4 and later:
=== src/lib/rpc/svc.c
==================================================================
- --- src/lib/rpc/svc.c (revision 1666)
+++ src/lib/rpc/svc.c (local)
@@ -109,15 +109,17 @@
if (sock < FD_SETSIZE) {
xports[sock] = xprt;
FD_SET(sock, &svc_fdset);
<URL:http://www.FreeBSD.org/handbook/kernelconfig.html> and reboot the
system.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
c) Install and use a fixed version of BIND from the FreeBSD Ports
Collection.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
u_int8_t version;
u_int8_t code;
u_int8_t followers;
u_int8_t dom_len;
u_int8_t domain[VTP_DOMAIN_SIZE];
u_int32_t revision;
u_int32_t updater;
u_int8_t timestamp[VTP_TIMESTAMP_SIZE];
u_int8_t md5[16];
};
This patch applies to Subversion 1.6.x (apply with patch -p0 < patchfile):
[[[
Index: subversion/libsvn_delta/svndiff.c
===================================================================
--- subversion/libsvn_delta/svndiff.c (revision 38519)
+++ subversion/libsvn_delta/svndiff.c (working copy)
@@ -60,10 +60,23 @@ struct encoder_baton {
apr_pool_t *pool;
};
# freebsd-update fetch
# freebsd-update install
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
# freebsd-update fetch
# freebsd-update install
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
- ->HP-UX B.11.11, B.11.23, and B.11.31 running Java Runtime Environment (JRE) v5.0.10 and earlier, and Java Developer Kit (JDK), v1.4.2.16 and earlier.
BACKGROUND
To determine if a system has an affected version, search the output of "swlist -a revision -l fileset" for an affected fileset. Then determine if a fixed revision or applicable patch is installed.
AFFECTED VERSIONS
HP-UX B.11.11
HP-UX B.11.23
# cd /usr/src/libexec/ftpd
# make obj && make depend && make && make install
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
FIXES
=====
* The krb5-1.7 release already contains a fix for this vulnerability.
* Apply the patch below. The corresponding SVN revision (r22427) in
our source tree contains additional use-after-free bugfixes; we
believe that it is impractical for an attacker to induce execution
of these sections of code.
Index: src/kadmin/server/server_stubs.c
# freebsd-update fetch
# freebsd-update install
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
be recompiled as described in
<URL:http://www.FreeBSD.org/handbook/makeworld.html>
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
which were created prior to applying this patch in case they contain
sensitive information.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
<URL:http://www.FreeBSD.org/handbook/kernelconfig.html> and reboot the
system.
VI. Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
CVS:
Branch Revision
HP-UX B.11.11
=============
hpuxwsAPACHE.PHP
hpuxwsAPACHE.PHP2
action: install revision B.2.0.59.04.01 or subsequent and restart Apache
URL: ftp://srt80056:srt80056@hprc.external.hp.com
HP-UX B.11.23
=============
hpuxwsAPCH32.PHP
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP-UX B.11.11, B.11.23, and B.11.31 running HP Secure Shell
BACKGROUND
To determine if an HP-UX system has an affected version, search the output of "swlist -a revision -l fileset" for one of the filesets listed below.
For affected systems verify that the recommended action has been taken.
AFFECTED VERSIONS
HP-UX B.11.11
==============
<<Previous Next>>
|
