Ruby Buzz Forum - OpenBSD - Only *two* remote holes in the default install, in more than 10 years!

Articles |
News |
Weblogs |
Books |
Forums

Artima Forums | Articles | Weblogs | Java Answers | News

Sponsored Link •

Ruby Buzz Forum
OpenBSD - Only *two* remote holes in the default install, in more than 10 years!

0 replies on 1 page.

Welcome Guest
Sign In

Back to Topic List

Reply to this Topic

Search Forum

Threaded View


Previous Topic		Next Topic

Flat View: This topic has 0 replies on 1 page

Jonathan Weiss

Posts: 146
Nickname: jweiss
Registered: Jan, 2006

Jonathan Weiss is a Ruby and BSD enthusiast

OpenBSD - Only *two* remote holes in the default install, in more than 10 years!

Posted: Mar 14, 2007 5:35 AM

This post originated from an RSS feed registered with Ruby Buzz by Jonathan Weiss.
Original Post: OpenBSD - Only two remote holes in the default install, in more than 10 years! Feed Title: BlogFish Feed URL: http://blog.innerewut.de/feed/atom.xml Feed Description: Weblog by Jonathan Weiss about Unix, BSD, security, Programming in Ruby, Ruby on Rails and Agile Development.	Latest Ruby Buzz Posts Latest Ruby Buzz Posts by Jonathan Weiss Latest Posts From BlogFish

Yes, there is now a second remote hole in OpenBSD. In the last 10 years there was only one, yesterday Theo de Raadt posted the second one (discovered by Core Security Technologies) to misc@openbsd.org. The vulnerability involves a mbuf remote kernel buffer overflow in the IPv6 code.

So you should patch immediately if you use IPv6 or disable it through PF (as it is enabled by default):

block in ine6

Apart from that the upcoming 4.1 release ("Puffy Baba & the 40 Vendors") release is available for pre-order.

Read: OpenBSD - Only *two* remote holes in the default install, in more than 10 years!

Previous Topic

Next Topic


	Web Artima.com