NetBSD 1.5 Security Patches
Below is the list of patches applicable to the NetBSD 1.5 release:
- A description and resolution procedure for a ftpd root escalation can be found in NetBSD Security Advisory NetBSD-SA2004-009
- A description and resolution procedure for TCP protocol and implementation vulnerability can be found in NetBSD Security Advisory NetBSD-SA2004-006
- A description and resolution procedure for Denial of service vulnerabilities in OpenSSL can be found in NetBSD Security Advisory NetBSD-SA2004-005
- A description and resolution procedure for shmat reference counting bug can be found in NetBSD Security Advisory NetBSD-SA2004-004
- A description and resolution procedure for OpenSSL 0.9.6 ASN.1 parser vulnerability can be found in NetBSD Security Advisory NetBSD-SA2004-003
- A description and resolution procedure for DNS negative cache poisoning can be found in NetBSD Security Advisory NetBSD-SA2003-018
- A description and resolution procedure for OpenSSL multiple vulnerability can be found in NetBSD Security Advisory NetBSD-SA2003-017
- A description and resolution procedure for Sendmail - another prescan() bug CAN-2003-0694 can be found in NetBSD Security Advisory NetBSD-SA2003-016
- A description and resolution procedure for Remote and local vulnerabilities in XFree86 font libraries can be found in NetBSD Security Advisory NetBSD-SA2003-015
- A description and resolution procedure for Insufficient argument checking in sysctl(2) can be found in NetBSD Security Advisory NetBSD-SA2003-014
- A description and resolution procedure for Kernel memory disclosure via ibcs2 can be found in NetBSD Security Advisory NetBSD-SA2003-013
- A description and resolution procedure for Out of bounds memset(0) in sshd can be found in NetBSD Security Advisory NetBSD-SA2003-012
- A description and resolution procedure for off-by-one error in realpath(3) can be found in NetBSD Security Advisory NetBSD-SA2003-011
- A description and resolution procedure for remote panic in OSI networking code can be found in NetBSD Security Advisory NetBSD-SA2003-010
- A description and resolution procedure for sendmail buffer overrun in prescan() address parser can be found in NetBSD Security Advisory SA2003-009
- A description and resolution procedure for faulty length checks in xdrmem_getbytes can be found in NetBSD Security Advisory SA2003-008
- A description and resolution procedure for (Another) Encryption weakness in OpenSSL code can be found in NetBSD Security Advisory SA2003-007
- A description and resolution procedure for Cryptographic weaknesses in Kerberos v4 protocol can be found in NetBSD Security Advisory SA2003-006
- A description and resolution procedure for RSA timing attack in OpenSSL code can be found in NetBSD Security Advisory SA2003-005
- A description and resolution procedure for Format string vulnerability in zlib gzprintf() can be found in NetBSD Security Advisory SA2003-004
- A description and resolution procedure for Buffer Overflow in file(1) can be found in NetBSD Security Advisory SA2003-003
- A description and resolution procedure for Malformed header Sendmail vulnerability can be found in NetBSD Security Advisory SA2003-002
- A description and resolution procedure for Encryption weakness in OpenSSL code can be found in NetBSD Security Advisory SA2003-001
- A description and resolution procedure for Buffer overrun in talkd can be found in NetBSD Security Advisory SA2002-019
- A description and resolution procedure for Multiple security isses with kfd daemon can be found in NetBSD Security Advisory SA2002-018
- A description and resolution procedure for shutdown(s, SHUT_RD) on TCP socket does not work as intended can be found in NetBSD Security Advisory SA2002-017
- A description and resolution procedure for Insufficient length check in ESP authentication data can be found in NetBSD Security Advisory SA2002-016
- A description and resolution procedure for (another) buffer overrun in libc/libresolv DNS resolver can be found in NetBSD Security Advisory SA2002-015
- A description and resolution procedure for fd_set overrun in mbone tools and pppd can be found in NetBSD Security Advisory SA2002-014
- A description and resolution procedure for Bug in NFS server code allows remote denial of service can be found in NetBSD Security Advisory SA2002-013
- A description and resolution procedure for buffer overrun in setlocale can be found in NetBSD Security Advisory SA2002-012
- A description and resolution procedure for Sun RPC XDR decoder contains buffer overflow can be found in NetBSD Security Advisory SA2002-011
- A description and resolution procedure for symlink race in pppd can be found in NetBSD Security Advisory SA2002-010
- A description and resolution procedure for Multiple vulnerabilities in OpenSSL code can be found in NetBSD Security Advisory SA2002-009
- A description and resolution procedure for buffer overrun in libc DNS resolver can be found in NetBSD Security Advisory SA2002-006
- A description and resolution procedure for OpenSSH protocol version 2 challenge-response authentication can be found in NetBSD Security Advisory SA2002-005
- A description and resolution procedure for Off-by-one error in openssh session can be found in NetBSD Security Advisory SA2002-004
- A description and resolution procedure for gzip buffer overrun with long filename can be found in NetBSD Security Advisory SA2002-002
- A description and resolution procedure for Close-on-exec, SUID and ptrace(2) can be found in NetBSD Security Advisory SA2002-001
- A description and resolution procedure for Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon can be found in NetBSD Security Advisory SA2001-018
- A description and resolution procedure for sendmail(8) incorrect command line argument check can be found in NetBSD Security Advisory SA2001-017
- A description and resolution procedure for unsafe chdir usage in fts(3) can be found in NetBSD Security Advisory SA2001-016
- A description and resolution procedure for Insufficient checking of lengths passed from userland to kernel can be found in NetBSD Security Advisory SA2001-015
- A description and resolution procedure for dump(8) exposes 'tty' group can be found in NetBSD Security Advisory SA2001-014
- A description and resolution procedure for an OpenSSL PRNG weakness can be found in NetBSD Security Advisory SA2001-013
- A description and resolution procedure for a telnetd(8) options overflow can be found in NetBSD Security Advisory SA2001-012
- A description and resolution procedure for an insufficient msg_controllen checking for sendmsg(2) can be found in NetBSD Security Advisory SA2001-011
- A description and resolution procedure for a sshd(8) "cookies" file mishandling on X11 forwarding can be found in NetBSD Security Advisory SA2001-010
- A description and resolution procedure for a race condition between sugid-exec and ptrace(2) can be found in NetBSD Security Advisory SA2001-009
- A description and resolution procedure for a vulnerability that could lead to local root compromise on the sh3 platform can be found in NetBSD Security Advisory SA2001-008
- A description and resolution procedure for a problem where the IP Filter packet filtering software may incorrectly pass packets can be found in NetBSD Security Advisory SA2001-007
- A description and resolution procedure for a remote denial of service using bogus fragmented IPv4 packets can be found in NetBSD Security Advisory SA2001-006
- A description and resolution procedure for a remote buffer overflow in the FTP daemon can be found in NetBSD Security Advisory SA2001-005
- A description and a patch for a buffer overflow vulnerability in the NTP daemon can be found in NetBSD Security Advisory SA2001-004
- A description of NetBSD's vulnerability position with regard to various implementations of the Secure Shell (SSH) daemon, either integrated releases or via pkgsrc, can be found in NetBSD Security Advisory SA2001-003. This advisory also describes a requirement for all users to ensure that the rnd(4) device is properly configured to prevent weak random number generation by integrated SSH and OpenSSL on NetBSD-1.5.
- A description, patch and workaround for a vulnerability that could lead to local root compromise on i386 systems with the USER_LDT kernel option enabled can be found in NetBSD Security Advisory SA2001-002
- A description and resolution procedure for several security vulnerabilities in the BIND name server daemon can be found in NetBSD Security Advisory SA2001-001
- A description and a patch for a security vulnerability in the FTP daemon can be found in NetBSD Security Advisory SA2000-018
- A description and a patch for a security vulnerability in the kerberos libraries and telnet daemon can be found in NetBSD Security Advisory SA2000-017
- A description, patch, and resolution procedure for rogue vulnerability can be found in NetBSD Security Advisory SA2002-021
- A description and resolution procedure for buffer overrun in pic(1) can be found in NetBSD Security Advisory SA2002-022
- A description and resolution procedure for sendmail smrsh vulnerability can be found in NetBSD Security Advisory SA2002-023
- A description and resolution procedure for IPFilter FTP proxy vulnerability can be found in NetBSD Security Advisory SA2002-024
- A description and resolution procedure for trek(6) buffer overrun can be found in NetBSD Security Advisory SA2002-025
- A description and resolution procedure for buffer overrun in kadmind can be found in NetBSD Security Advisory SA2002-026
- A description and resolution procedure for ftpd STAT output non-conformance can deceive firewall devices can be found in NetBSD Security Advisory SA2002-027
- A description and resolution procedure for Buffer overrun in getnetbyname/getnetbyaddr can be found in NetBSD Security Advisory SA2002-028
- A description and resolution procedure for named(8) multiple denial of service and remote execution of code can be found in NetBSD Security Advisory SA2002-029
![[NetBSD flag]](/images/NetBSD-flag.png)
Copyright © 1994-2006 The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.
NetBSD® is a registered trademark of The NetBSD Foundation, Inc.