deadsimple BSD Security Advisories and Announcements

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-19:23.midi [REVISED]

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-19:23.midi Security Advisory
The FreeBSD Project

Topic: kernel memory disclosure from /dev/midistat

Category: core
Module: sound
Announced: 2019-08-20
Credits: Peter Holm, Mark Johnston
Affects: All supported versions of FreeBSD.
Corrected: 2019-08-20 17:53:16 UTC (stable/12, 12.0-STABLE)
2019-08-20 17:50:33 UTC (releng/12.0, 12.0-RELEASE-p10)
2019-08-20 17:54:18 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:50:33 UTC (releng/11.3, 11.3-RELEASE-p3)
2019-08-20 17:50:33 UTC

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-19:24.mqueuefs

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-19:24.mqueuefs Security Advisory
The FreeBSD Project

Topic: Reference count overflow in mqueue filesystem 32-bit compat

Category: core
Module: kernel
Announced: 2019-08-20
Credits: Karsten König, Secfault Security
Affects: All supported versions of FreeBSD.
Corrected: 2019-08-20 17:45:22 UTC (stable/12, 12.0-STABLE)
2019-08-20 17:51:32 UTC (releng/12.0, 12.0-RELEASE-p10)
2019-08-20 17:46:22 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:51:32 UTC (releng/11.3, 11.3-RELEASE-p3)

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-19:23.midi

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-19:23.midi Security Advisory
The FreeBSD Project

Topic: kernel memory disclosure from /dev/midistat

Category: core
Module: sound
Announced: 2019-08-20
Credits: Peter Holm, Mark Johnston
Affects: All supported versions of FreeBSD.
Corrected: 2019-08-20 17:53:16 UTC (stable/12, 12.0-STABLE)
2019-08-20 17:50:33 UTC (releng/12.0, 12.0-RELEASE-p10)
2019-08-20 17:54:18 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:50:33 UTC (releng/11.3, 11.3-RELEASE-p3)
2019-08-20 17:50:33 UTC

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-19:22.mbuf

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-19:22.mbuf Security Advisory
The FreeBSD Project

Topic: IPv6 remote Denial-of-Service

Category: kernel
Module: net
Announced: 2019-08-20
Credits: Clement Lecigne
Affects: All supported versions of FreeBSD.
Corrected: 2019-08-10 00:01:25 UTC (stable/12, 12.0-STABLE)
2019-08-20 17:49:33 UTC (releng/12.0, 12.0-RELEASE-p10)
2019-08-10 00:02:45 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:49:33 UTC (releng/11.3, 11.3-RELEASE-p3)
2019-08-20 17:49:33 UTC (releng/11.2, 11.2-RELEASE-p14)
CVE Name:

(Read more...)

[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-19:17.ipfw

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-19:17.ipfw Errata Notice
The FreeBSD Project

Topic: ipfw(8) jail keyword broken prior to jail startup

Category: core
Module: ipfw
Announced: 2019-08-20
Affects: FreeBSD 11.3
Corrected: 2019-08-15 17:40:48 UTC (stable/12, 12.0-STABLE)
2019-08-15 17:40:48 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:46:40 UTC (releng/11.3, 11.3-RELEASE-p3)

Note that this issue was introduced after the FreeBSD 11.2 and 12.0 releases.

(Read more...)

[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-19:16.bhyve

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-19:16.bhyve Errata Notice
The FreeBSD Project

Topic: Bhyve instruction emulation improvements (opcode 03H and F7H)

Category: core
Module: bhyve
Announced: 2019-08-20
Credits: John Baldwin, Jason Tubnor
Affects: All supported versions of FreeBSD.
Corrected: 2019-07-07 17:30:23 UTC (stable/12, 12.0-STABLE)
2019-08-20 17:45:44 UTC (releng/12.0, 12.0-RELEASE-p10)
2019-07-07 17:31:13 UTC (stable/11, 11.3-STABLE)
2019-08-20 17:45:44 UTC (releng/11.3, 11.3-RELEASE-p3)

(Read more...)