A new daemon(8)
daemon(8) has been updated, cause there’s ports that expect daemon to have some specific flags – especially -T.
There is a certain correlation between this utility and certain BSD logos.
daemon(8) has been updated, cause there’s ports that expect daemon to have some specific flags – especially -T.
There is a certain correlation between this utility and certain BSD logos.
BSD Now 335 is up, with links to a bunch of advocacy articles this week, and also notation of a (past) BSD conference in Australia, and an interview of a Hyperbola dev; a project I need to pay more attention to.
You’ve seen it. A package gets installed. Some shell scripts are included. They get modified. It happens. But how do you know what has changed? I know there is a tool in pkg for this. I know there is a periodic script which uses it. Let’s go looking. In this post: FreeBSD 12.1 periodic $ […]
If you’ve been following HAMMER2 for some time, these questions and answers will not be new to you – but they are useful notes all the same.
Just like it’s always DNS, if you have to ask what your sound device is… it’s probably hda. That’s been the answer I think I’ve seen every time for maybe a decade?
Errata patches for OpenSMTPD have been released for OpenBSD 6.5 and 6.6.
smtpd can crash on opportunistic TLS downgrade, causing a denial of service.
Binary updates for the amd64, i386, and arm64 platforms are available via
the syspatch utility. Sour…
Errata patches for OpenSMTPD have been released for OpenBSD 6.5 and 6.6.
An incorrect check allows an attacker to trick mbox delivery into executing
arbitrary commands as root and lmtp delivery into executing arbitrary commands
as an unprivileged user…
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
=============================================================================
FreeBSD-EN-20:02.nmount Errata Notice
The FreeBSD Project
Topic: nmount invalid pointer dereference
Category: core
Module: kernel
Announced: 2020-01-28
Credits: Andrew Turner
Affects: FreeBSD 11.3 and FreeBSD 12.0.
Corrected: 2019-10-03 07:17:26 UTC (stable/12, 12.1-STABLE)
2019-10-04 14:10:56 UTC (releng/12.1, 12.1-RELEASE)
2020-01-28 18:54:15 UTC (releng/12.0, 12.0-RELEASE-p13)
2019-10-04 17:27:49 UTC (stable/11, 11.3-STABLE)
2020-01-28 18:54:15 UTC (releng/11.3, 11.3-RELEASE-p6)
For
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
=============================================================================
FreeBSD-EN-20:01.ssp Errata Notice
The FreeBSD Project
Topic: Imprecise ordering of SSP canary initialization
Category: core
Module: libc
Announced: 2020-01-28
Credits: Kyle Evans
Affects: All supported versions of FreeBSD.
Corrected: 2019-11-25 03:49:38 UTC (stable/12, 12.1-STABLE)
2020-01-28 18:53:14 UTC (releng/12.1, 12.1-RELEASE-p2)
2020-01-28 18:53:14 UTC (releng/12.0, 12.0-RELEASE-p13)
2019-11-25 03:49:38 UTC (stable/11, 11.3-STABLE)
2020-01-28 18:53:14 UTC (releng/11.3,
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
=============================================================================
FreeBSD-SA-20:02.ipsec Security Advisory
The FreeBSD Project
Topic: Missing IPsec anti-replay window check
Category: core
Module: kernel
Announced: 2020-01-28
Credits: Jean-Francois HREN
Affects: FreeBSD 12.0 only
Corrected: 2020-01-28 18:56:46 UTC (releng/12.0, 12.0-RELEASE-p13)
CVE Name: CVE-2019-5613
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections,
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
=============================================================================
FreeBSD-SA-20:03.thrmisc Security Advisory
The FreeBSD Project
Topic: kernel stack data disclosure
Category: core
Module: kernel
Announced: 2020-01-28
Credits: Ilja Van Sprundel
Affects: All supported versions of FreeBSD.
Corrected: 2019-11-15 16:40:10 UTC (stable/12, 12.1-STABLE)
2020-01-28 18:57:45 UTC (releng/12.1, 12.1-RELEASE-p2)
2020-01-28 18:57:45 UTC (releng/12.0, 12.0-RELEASE-p13)
2019-11-15 16:40:55 UTC (stable/11, 11.3-STABLE)
2020-01-28 18:57:45 UTC (releng/11.3, 11.3-RELEASE-p6)
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
=============================================================================
FreeBSD-SA-20:01.libfetch Security Advisory
The FreeBSD Project
Topic: libfetch buffer overflow
Category: core
Module: libfetch
Announced: 2020-01-28
Credits: Duncan Overbruck
Affects: All supported versions of FreeBSD.
Corrected: 2020-01-28 18:40:55 UTC (stable/12, 12.1-STABLE)
2020-01-28 18:55:25 UTC (releng/12.1, 12.1-RELEASE-p2)
2020-01-28 18:55:25 UTC (releng/12.0, 12.0-RELEASE-p13)
2020-01-28 18:42:06 UTC (stable/11, 11.3-STABLE)
2020-01-28 18:55:25 UTC (releng/11.3, 11.3-RELEASE-p6)
CVE Name:
–===============7202829686340021064==
Content-Type: text/plain
FreeBSD Project Quarterly Status Report – Fourth Quarter 2019
Here is the last quarterly status report for 2019. As you might
remember from last report, we changed our timeline: no…
I literally just smooshed all my open tabs that weren’t baking–related into this post. Electric Rogue. (via) Tiny Helpers. Single-purpose web development tools. (via) Manytools, similar. (via) Bringing the London Bus Network home. Home-made info screen. (via) Fun With Software. An AR joke. fast_template, your own blog, without having to buy into anyone’s platform. (via) …
BUGs BUGs BUGs this week. I’ll make sure to note the events again when they get closer, too. Cataclysm – Dark Days Ahead. Turn-based apocalyptic survival, open source and probably runs on BSD. (via) NYCBUG is looking for speakers for I assume February and April; March was I think filled after this was written. SemiBUG’s …
BSD Now 334 is posted, with juuuust the right mix of items; some advocacy, some license confusion (for Linux), etc. I notice linked in the bottom section the February NYCBUG meeting will have Paul Vixie talking at their meeting, which hasn’t eve…
I imagine this may work for any BSD, really. Aaron Li has the instructions, which may be especially useful for non-English readers.
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1
NetBSD Security Advisory 2020-001
=================================
Topic: Missing permissions checks for network ioctls
Version: NetBSD-current: affected
NetBSD 9.0_RC1: affected
NetBSD 8.1:…