deadsimple BSD Security Advisories and Announcements

FreeBSD Errata Notice FreeBSD-EN-21:20.vlan

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:20.vlan Errata Notice
The FreeBSD Project

Topic: Missing backwards compatibility in vlan(4)

Category: core
Module: vlan
Announced: 2021-06-29
Affects: FreeBSD 13.0
Corrected: 2021-04-12 22:18:33 UTC (stable/13, 13.0-STABLE)
2021-06-29 17:09:25 UTC (releng/13.0, 13.0-RELEASE-p3)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:22.linux_futex

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:22.linux_futex Errata Notice
The FreeBSD Project

Topic: Linux compatibility layer futex(2) system call vulnerability

Category: core
Module: kernel
Announced: 2021-06-29
Credits: Dmitry Chagin
Affects: All supported versions of FreeBSD.
Corrected: 2021-06-29 19:58:32 UTC (stable/13, 13.0-STABLE)
2021-06-29 20:06:09 UTC (releng/13.0, 13.0-RELEASE-p3)
2021-06-29 20:01:48 UTC (stable/12, 12.2-STABLE)
2021-06-29 20:26:15 UTC (releng/12.2, 12.2-RELEASE-p9)
2021-06-29 20:01:14 UTC

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:21.ipfw

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:21.ipfw Errata Notice
The FreeBSD Project

Topic: Kernel panic with ipfw link-layer filtering enabled

Category: core
Module: ipfw
Announced: 2021-06-29
Affects: FreeBSD 13.0
Corrected: 2021-06-19 14:08:49 UTC (stable/13, 13.0-STABLE)
2021-06-29 17:09:43 UTC (releng/13.0, 13.0-RELEASE-p3)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:19.libcasper

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:19.libcasper Errata Notice
The FreeBSD Project

Topic: libcasper assertion failure

Category: core
Module: libcasper
Announced: 2021-06-29
Credits: Borja Marcos, Jung-uk Kim
Affects: All supported versions of FreeBSD.
Corrected: 2021-06-15 18:14:43 UTC (stable/13, 13.0-STABLE)
2021-06-29 17:09:02 UTC (releng/13.0, 13.0-RELEASE-p3)
2021-06-16 20:25:22 UTC (stable/12, 12.2-STABLE)
2021-06-29 20:26:12 UTC (releng/12.2, 12.2-RELEASE-p9)
2021-06-16 20:30:46 UTC (stable/11, 11.4-STABLE)

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:18.libc++

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:18.libc++ Errata Notice
The FreeBSD Project

Topic: Missing C++20 headers in libc++

Category: contrib
Module: libc++
Announced: 2021-06-29
Affects: FreeBSD 13.0
Corrected: 2021-06-03 18:53:18 UTC (stable/13, 13.0-STABLE)
2021-06-29 17:08:58 UTC (releng/13.0, 13.0-RELEASE-p3)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:17.libradius

FreeBSD-EN-21:17.libradius Errata Notice
The FreeBSD Project

Topic: Incorrect validation in rad_get_attr(3)

Category: core
Module: libradius
Announced: 2021-06-01
Affects: All supported versions of FreeBSD.
Corrected: 2021-05-28 17:00:19 UTC (stable/13, 13.0-STABLE)
2021-06-01 20:26:32 UTC (releng/13.0, 13.0-RELEASE-p2)
2021-05-28 17:03:20 UTC (stable/12, 12.2-STABLE)
2021-06-01 20:38:39 UTC (releng/12.2, 12.2-RELEASE-p8)
2021-05-28 17:02:43 UTC (stable/11, 11.4-STABLE)
2021-05-28 20:37:54 UTC (releng/11.4, 11.4-RELEASE-p11)

For general information regarding FreeBSD Errata

(Read more...)

FreeBSD Security Advisory FreeBSD-SA-21:11.smap

FreeBSD-SA-21:11.smap Security Advisory
The FreeBSD Project

Topic: SMAP bypass

Category: core
Module: amd64
Announced: 2021-05-26
Credits: I lost my dog if you see him please contact me at @m00nbsd.
Affects: FreeBSD 12.2 and later.
Corrected: 2021-05-26 19:18:54 UTC (stable/13, 13.0-STABLE)
2021-05-26 19:31:50 UTC (releng/13.0, 13.0-RELEASE-p1)
2021-05-26 19:30:31 UTC (stable/12, 12.2-STABLE)
2021-05-26 20:40:20 UTC (releng/12.2, 12.2-RELEASE-p7)
CVE Name: CVE-2021-29628

For general

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:15.virtio

FreeBSD-EN-21:15.virtio Errata Notice
The FreeBSD Project

Topic: virtio(4) device probing fails

Category: core
Module: virtio
Announced: 2021-05-26
Affects: FreeBSD 13.0
Corrected: 2021-04-03 06:09:50 UTC (stable/13, 13.0-STABLE)
2021-05-26 20:32:40 UTC (releng/13.0, 13.0-RELEASE-p1)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following sections, please visit
.

I. Background

VirtIO is

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:16.bc

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-EN-21:16.bc Errata Notice
The FreeBSD Project

Topic: dc update

Category: contrib
Module: bc
Announced: 2021-05-26
Affects: FreeBSD 13.0
FreeBSD 12.2 (only when built with option WITH_GH_BC)
Corrected: 2021-04-06 08:44:52 UTC (stable/13, 13.0-STABLE)
2021-05-26 20:32:40 UTC (releng/13.0, 13.0-RELEASE-p1)
2021-04-06 08:44:52 UTC (stable/12, 12.2-STABLE)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:12.divert

FreeBSD-EN-21:12.divert Errata Notice
The FreeBSD Project

Topic: Kernel double free when transmitting on a divert socket

Category: core
Module: divert(4)
Announced: 2021-05-26
Affects: FreeBSD 13.0
Corrected: 2021-05-10 13:36:08 UTC (stable/13, 13.0-STABLE)
2021-05-26 19:30:51 UTC (releng/13.0, 13.0-RELEASE-p1)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following sections, please visit

(Read more...)

FreeBSD Errata Notice FreeBSD-EN-21:13.mpt

FreeBSD-EN-21:13.mpt Errata Notice
The FreeBSD Project

Topic: mpt(4) I/O errors with a large maxphys value

Category: core
Module: mpt
Announced: 2021-05-26
Affects: FreeBSD 13.0
Corrected: 2021-04-24 00:43:14 UTC (stable/13, 13.0-STABLE)
2021-05-26 19:29:54 UTC (releng/13.0, 13.0-RELEASE-p1)

For general information regarding FreeBSD Errata Notices and Security
Advisories, including descriptions of the fields above, security
branches, and the following sections, please visit
.

(Read more...)

FreeBSD Security Advisory FreeBSD-SA-21:12.libradius

FreeBSD-SA-21:12.libradius Security Advisory
The FreeBSD Project

Topic: Missing message validation in libradius(3)

Category: core
Module: libradius
Announced: 2021-05-26
Credits: leommxj and Swings from Chaitin Security Research Lab
Affects: All supported versions of FreeBSD.
Corrected: 2021-05-26 19:45:31 UTC (stable/13, 13.0-STABLE)
2021-05-26 20:36:29 UTC (releng/13.0, 13.0-RELEASE-p1)
2021-05-26 20:39:35 UTC (stable/12, 12.2-STABLE)
2021-05-26 20:40:23 UTC (releng/12.2, 12.2-RELEASE-p7)
2021-05-26 20:41:31 UTC (stable/11, 11.4-STABLE)
2021-05-26

(Read more...)