For errata on a certain release, click below:
2.0,
2.1,
2.2,
2.3,
2.4,
2.5,
2.6,
2.7,
2.8,
2.9,
3.0,
3.1,
3.2,
3.3,
3.4,
3.5,
3.6,
3.7,
3.8,
3.9,
4.0,
4.1,
4.2,
4.3,
4.4,
4.5,
4.6,
4.7,
4.8,
4.9,
5.0,
5.1,
5.2,
5.3,
5.4,
5.5,
5.6,
5.7,
5.8,
5.9,
6.0,
6.1,
6.2,
6.3,
6.4,
6.5,
6.6,
6.7,
6.8,
6.9,
7.1,
7.2,
7.3,
7.4,
7.5,
7.6,
7.7,
7.8.
Patches for the OpenBSD base system are distributed as unified diffs.
Each patch is cryptographically signed with the
signify(1) tool and contains
usage instructions.
All the following patches are also available in one
tar.gz file
for convenience.
Alternatively, the syspatch(8)
utility can be used to apply binary updates on the following architectures:
amd64, i386, arm64.
Patches for supported releases are also incorporated into the
-stable branch.
-
001: RELIABILITY FIX: October 31, 2021
All architectures
In certain configurations, nsd(8) can be crashed by a remote attacker.
A source code patch exists which remedies this problem.
-
002: RELIABILITY FIX: October 31, 2021
All architectures
Opening /dev/bpf too often could lead to resource exhaustion.
A source code patch exists which remedies this problem.
-
003: SECURITY FIX: October 31, 2021
All architectures
The kernel could leak memory when closing unix sockets.
A source code patch exists which remedies this problem.
-
004: SECURITY FIX: November 9, 2021
All architectures
rpki-client(8) should handle CA misbehaviours as soft-errors.
A source code patch exists which remedies this problem.
-
005: RELIABILITY FIX: November 26, 2021
All architectures
An unprivileged user could crash the kernel by using UNIX-domain
sockets in multiple threads.
A source code patch exists which remedies this problem.
-
006: SECURITY FIX: November 26, 2021
All architectures
In some situations the X.509 verifier would discard an error on
an unverified certificate chain, resulting in an authentication bypass.
A source code patch exists which remedies this problem.
-
007: SECURITY FIX: December 14, 2021
All architectures
Multiple input validation failures in the X server request parsing
code can lead to out of bounds memory accesses for authorized
clients.
A source code patch exists which remedies this problem.
-
008: SECURITY FIX: December 16, 2021
All architectures
If multicast routing is used, kernel memory is leaked to userland.
A source code patch exists which remedies this problem.
-
009: SECURITY FIX: January 19, 2022
All architectures
Fix 8 security issues in libexpat, all related to fixed-size integer
math (integer overflow and invalid shifts) near memory allocation.
A source code patch exists which remedies this problem.
-
010: RELIABILITY FIX: January 19, 2022
amd64
Intel-based vmm(4) hosts may have vm processes die due to host-side
state corruption.
A source code patch exists which remedies this problem.
-
011: SECURITY FIX: January 24, 2022
macppc
On PowerPC kernel memory is leaked to userland.
A source code patch exists which remedies this problem.
-
012: RELIABILITY FIX: February 2, 2022
amd64 i386
Userspace controlled code on GPU can access kernel memory on Intel
gen 8 and later GPUs.
A source code patch exists which remedies this problem.
-
013: SECURITY FIX: February 2, 2022
All architectures
Fix two security issues in libexpat related to integer overflow.
A source code patch exists which remedies this problem.
-
014: SECURITY FIX: February 21, 2022
All architectures
More than 7 nameservers in an IPv6 router advertisement could crash slaacd.
A source code patch exists which remedies this problem.
-
015: SECURITY FIX: February 24, 2022
All architectures
Fix five security issues in libexpat related to encoding, stack
exhaustion, and integer overflow.
A source code patch exists which remedies this problem.
-
016: SECURITY FIX: March 15, 2022
All architectures
A malicious certificate can cause an infinite loop.
A source code patch exists which remedies this problem.
-
017: SECURITY FIX: March 22, 2022
All architectures
A malicious router advertisement could overflow heap memory in
unprivileged slaacd process.
A source code patch exists which remedies this problem.
-
018: SECURITY FIX: April 1, 2022
All architectures
Memory corruption in zlib can lead to a crash.
A source code patch exists which remedies this problem.
-
019: SECURITY FIX: April 5, 2022
All architectures
Fix zlib vulnerability in PPP and IPComp compression.
A source code patch exists which remedies this problem.
-
020: RELIABILITY FIX: April 11, 2022
All architectures
rpki-client(8) handled time zones incorrectly.
A source code patch exists which remedies this problem.
-
021: SECURITY FIX: May 16, 2022
All architectures
Malicious PPPoE packets could corrupt kernel memory.
A source code patch exists which remedies this problem.
-
022: SECURITY FIX: July 24, 2022
All architectures
Input validation failures in the X server request parsing code can
lead to out of bounds memory accesses for authorized clients.
A source code patch exists which remedies this problem.
-
023: RELIABILITY FIX: July 24, 2022
All architectures
cron(8) aborted due to strange poll timevals.
A source code patch exists which remedies this problem.
-
024: SECURITY FIX: August 12, 2022
All architectures
A missing length check in zlib could lead to a heap buffer overflow.
A source code patch exists which remedies this problem.
-
025: SECURITY FIX: September 23, 2022
All architectures
In libexpat fix heap use-after-free vulnerability CVE-2022-40674.
A source code patch exists which remedies this problem.
-
026: SECURITY FIX: September 26, 2022
All architectures
In smtpd(8), possible use-after-free if TLS handshake fails for
outbound connections.
A source code patch exists which remedies this problem.
¡®Yes, sir. I felt sure you understood that. She said she had told you.¡¯ "Why, eh,--I--I don't know that my movements need have anything to do with his. Yours, of course,--" "Ah, but if it saved your life!" "No, I'm not," grumbled the Doctor, "I've had enough of this wild-goose chase. And besides, it's nearly dinner time." "I am coming to that," Lawrence said, lighting a fresh cigarette. "As soon as Bruce was in trouble and the plot began to reel off I saw that it was mine. Of course there were large varyings in the details, but the scheme was mine. It was even laid on the same spot as my skeleton story. When I grasped that, I knew quite well that somebody must have stolen my plot." Judy In a coach-house, through which we passed on our way to see the prince's favourite horses with the state carriages¡ªquite commonplace and comfortable, and made at Palitana¡ªwas a chigram,[Pg 68] off which its silk cover was lifted; it was painted bright red and spangled with twinkling copper nails. This carriage, which is hermetically closed when the Ranee goes out in it, was lined with cloth-of-gold patterned with Gohel Sheri's initials within a horseshoe: a little hand-glass on one of the cushions, two boxes of chased silver, the curtains and hangings redolent of otto of roses. "Are you certain of it? You have seen so very little of him, and you may be mistaken." "And your wife?" "I drawed on my man's bundle o' wood," said Gid, "and then dropped a little, so's to git him where he was biggest and make sure o' him." HoME²¨¶àÒ°½áÒÂ×óÏßÊÓƵ
ENTER NUMBET 0016www.hjchain.com.cn
www.jnyimu.com.cn
fecbgm.com.cn
www.ntlkmzp.net.cn
www.okpktg.org.cn
tiyanjia.com.cn
olyuan.com.cn
nmgslysy.com.cn
www.ru4.com.cn
ruobao.com.cn