deadsimple BSD Security Advisories and Announcements

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:10.jail_mount

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:10.jail_mount Security Advisory
The FreeBSD Project

Topic: jail escape possible by mounting over jail root

Category: core
Module: jail
Announced: 2021-04-06
Credits: Mateusz Guzik
Affects: All supported versions of FreeBSD.
Corrected: 2021-04-06 18:50:48 UTC (stable/13, 13.0-STABLE)
2021-04-06 19:18:59 UTC (releng/13.0, 13.0-RC5-p1)
2021-04-06 19:20:50 UTC (stable/12, 12.2-STABLE)
2021-04-06 19:21:33 UTC (releng/12.2, 12.2-RELEASE-p6)
2021-04-06 19:22:31

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:09.accept_filter

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:09.accept_filter Security Advisory
The FreeBSD Project

Topic: double free in accept_filter(9) socket configuration interface

Category: core
Module: accept_filter
Announced: 2021-04-06
Credits: Alexey Kulaev
Affects: FreeBSD 12.2 and later.
Corrected: 2021-03-28 00:24:15 UTC (stable/13, 13.0-STABLE)
2021-03-28 15:03:37 UTC (releng/13.0, 13.0-RC4)
2021-03-28 00:26:49 UTC (stable/12, 12.2-STABLE)
2021-04-06 19:21:21 UTC (releng/12.2, 12.2-RELEASE-p6)
CVE Name: CVE-2021-29627

For

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:08.vm

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:08.vm Security Advisory
The FreeBSD Project

Topic: Memory disclosure by stale virtual memory mapping

Category: core
Module: vm
Announced: 2021-04-06
Credits: Ryan Libby, Dell Inc.
Affects: All supported versions of FreeBSD.
Corrected: 2021-04-06 18:50:46 UTC (stable/13, 13.0-STABLE)
2021-04-06 19:18:49 UTC (releng/13.0, 13.0-RC5-p1)
2021-04-06 19:20:46 UTC (stable/12, 12.2-STABLE)
2021-04-06 19:21:30 UTC (releng/12.2, 12.2-RELEASE-p6)
2021-04-06

(Read more...)

[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-21:10.lldb

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:10.lldb Errata Notice
The FreeBSD Project

Topic: lldb abort on print command

Category: contrib
Module: lldb
Announced: 2021-04-06
Affects: FreeBSD 12.2
Corrected: 2020-10-31 18:42:03 UTC (stable/12, 12.2-STABLE)
2021-04-06 19:21:27 UTC (releng/12.2, 12.2-RELEASE-p6)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following

(Read more...)

[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-21:09.pf

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:09.pf Errata Notice
The FreeBSD Project

Topic: net.pf.request_maxcount not settable from loader.conf(5)

Category: core
Module: pf
Announced: 2021-04-06
Affects: FreeBSD 12.2
Corrected: 2020-12-15 08:29:45 UTC (stable/12, 12.2-STABLE)
2021-04-06 19:21:24 UTC (releng/12.2, 12.2-RELEASE-p6)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:07.openssl

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:07.openssl Security Advisory
The FreeBSD Project

Topic: Multiple vulnerabilities in OpenSSL

Category: contrib
Module: openssl
Announced: 2021-03-25
Affects: FreeBSD 12.2 and later
Corrected: 2021-03-25 15:45:19 UTC (stable/13, 13.0-STABLE)
2021-03-25 16:25:06 UTC (releng/13.0, 13.0-RC3-p1)
2021-03-25 17:14:46 UTC (stable/12, 12.2-STABLE)
2021-03-25 23:45:45 UTC (releng/12.2, 12.2-RELEASE-p5)
CVE Name: CVE-2021-3449, CVE-2021-3450

For general information regarding FreeBSD Security

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:04.jail_remove

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:04.jail_remove Security Advisory
The FreeBSD Project

Topic: jail_remove(2) fails to kill all jailed processes

Category: core
Module: jail
Announced: 2021-02-24
Credits: Mateusz Guzik
Affects: All supported versions of FreeBSD.
Corrected: 2021-02-19 01:22:08 UTC (stable/13, 13.0-STABLE)
2021-02-19 21:53:07 UTC (releng/13.0, 13.0-BETA3-p1)
2021-02-19 21:46:31 UTC (stable/12, 12.2-STABLE)
2021-02-24 01:43:39 UTC (releng/12.2, 12.2-RELEASE-p4)
2021-02-19 21:50:26 UTC

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:06.xen

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:06.xen Security Advisory
The FreeBSD Project

Topic: Xen grant mapping error handling issues

Category: contrib
Module: xen
Announced: 2021-02-24
Credits: See Xen XSA-361 for details
Affects: All supported versions of FreeBSD.
Corrected: 2021-02-23 00:55:14 UTC (stable/13, 13.0-STABLE)
2021-02-24 01:42:35 UTC (releng/13.0, 13.0-BETA3-p1)
2021-02-23 00:58:03 UTC (stable/12, 12.2-STABLE)
2021-02-24 01:43:59 UTC (releng/12.2, 12.2-RELEASE-p4)
2021-02-23

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-21:05.jail_chdir

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-21:05.jail_chdir Security Advisory
The FreeBSD Project

Topic: jail_attach(2) relies on the caller to change the cwd

Category: core
Module: jail
Announced: 2021-02-24
Credits: Mateusz Guzik
Affects: All supported versions of FreeBSD.
Corrected: 2021-02-22 05:49:40 UTC (stable/13, 13.0-STABLE)
2021-02-22 18:25:23 UTC (releng/13.0, 13.0-BETA3-p1)
2021-02-22 19:03:43 UTC (stable/12, 12.2-STABLE)
2021-02-24 01:43:47 UTC (releng/12.2, 12.2-RELEASE-p4)
2021-02-22

(Read more...)

[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-21:08.freebsd-update

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:08.freebsd-update Errata Notice
The FreeBSD Project

Topic: freebsd-update passwd regeneration

Category: core
Module: freebsd-update
Announced: 2021-02-24
Affects: All supported versions of FreeBSD.
Corrected: 2020-12-27 20:50:53 UTC (stable/12, 12.2-STABLE)
2021-02-24 01:43:52 UTC (releng/12.2, 12.2-RELEASE-p4)
2020-12-27 20:52:37 UTC (stable/11, 11.4-STABLE)
2021-02-24 01:41:49 UTC (releng/11.4, 11.4-RELEASE-p8)

For general information regarding FreeBSD Errata Notices and Security
Advisories,

(Read more...)