OpenBSD 7.2 is being released!

hitest · 12-22-2022, 02:33 PM

Updated. Thanks.

YesItsMe · 01-13-2023, 04:06 AM

Syspatch 013 (all architectures):
A TCP packet with destination port 0 that matches a pf divert-to rule could crash the kernel.

YesItsMe · 01-18-2023, 04:57 AM

Syspatch 014 (all architectures):
Input validation issues and path validation issues in libXpm can lead to infinite loops, memory corruption or arbitrary command execution. CVE-2022-46285, CVE-2022-44617 and CVE-2022-4883

YesItsMe · 01-23-2023, 08:47 AM

Syspatch 015 (all architectures):
vmm(4) exposed unsupported cpuid feature flags to guests.

Syspatch 016 (all architectures):
vmd(8) exposed unsupported cpuid feature flags to guests.

YesItsMe · 02-02-2023, 12:26 PM

Syspatch 017 (all architectures):
A double-free in the sshd pre-auth unprivileged process (not believed to be exploitable).

YesItsMe · 02-07-2023, 02:43 PM

Syspatch 018 (all architectures):
A malicious certificate revocation list or timestamp response token would allow an attacker to read arbitrary memory.

Syspatch 019 (all architectures):
CVE-2023-0494: use after free in the Xinput X server extension.

Syspatch 020 (all architectures):
smtpd(8) could abort due to a connection from a local, scoped ipv6 address.

YesItsMe · 02-27-2023, 04:04 AM

Syspatch 021 (all architectures):
Missing bounds check in console terminal emulation could cause a kernel crash after receiving specially crafted escape sequences.

YesItsMe · 03-18-2023, 08:51 PM

Syspatch 022 (all architectures):
Out of bounds accesses in libc resolver.

YesItsMe · 03-29-2023, 04:03 PM

Syspatch 023 (all architectures):
Incorrect length checks allow an out-of-bounds read in bgpd(8).

Syspatch 024 (all architectures):
Xserver, CVE-2023-1393: use after free bug in the Composite server extension.

YesItsMe · 05-27-2023, 07:09 PM

Syspatch 025 (all architectures):
IP address inheritance was handled incorrectly in rpki-client(8).

Syspatch 026 (all architectures):
A double free or use after free could occur after SSL_clear(3).

YesItsMe · 06-24-2023, 06:53 PM

Syspatch 027 (all architectures):
libX11 CVE-2023-3138 Missing checks in XQueryExtension() return values.

YesItsMe · 07-12-2023, 09:26 AM

Syspatch 028 (all architectures):
Incorrect length handling of path attributes in bgpd(8) can lead to a session reset.

Syspatch 029 (all architectures):
A malformed HTTP request can crash httpd(8), if fastcgi is in use.

Syspatch 030 (all architectures):
Incomplete validation of ELF headers in execve(2).

Syspatch 031 (all architectures):
When tracking nexthops over IPv6 multipath routes, or when receiving a NOTIFICATION while reaching an internal limit, bgpd(8) could crash.

YesItsMe · 07-19-2023, 04:03 PM

Syspatch 032 (all architectures):
In ssh-agent(1)'s PKCS#11 provider support, remote execution was possible due to controllable access in low-quality libraries. In addition to fixing this, the ability to remotely load PKCS#11 libraries is now disabled by default (re-enable with '-Oallow-remote-pkcs11').

YesItsMe · 07-24-2023, 10:23 PM

AMD has a fuckup again. OpenBSD fixed it.

Syspatch 033 (amd64, i386):
Workaround for Zenbleed AMD cpu problem. For i386 and amd64 platforms.

Syspatch 034 (amd64, i386):
Add firmware for AMD cpus, to repair past or potential future bugs. For i386 and amd64 platforms.
After this step, "fw_update" and "installboot" must be run.

Syspatch 035 (amd64, i386):
Install firmware updates for AMD cpus, to repair past or potential future bugs. For i386 and amd64 platforms.

Syspatch 036 (all architectures):
Missing bounds check in console terminal emulation could cause a kernel crash after receiving specially crafted escape sequences.

YesItsMe · 07-25-2023, 07:08 PM

Syspatch 037 (amd64, i386):
Some hypervisors remain unpatched for writes to Zenbleed DE_CFG bit, so skip it.