FreeBSD Security Advisory FreeBSD-SA-09:16.rtld
Maxim Khitrov
mkhitrov at gmail.com
Thu Dec 3 16:33:15 UTC 2009
2009/12/3 Henrique Araujo <henrique at cssg.g12.br>:
> Em Qui, 2009-12-03 às 09:30 +0000, FreeBSD Security Advisories escreveu:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> =============================================================================
>> FreeBSD-SA-09:16.rtld Security Advisory
>> The FreeBSD Project
>>
>> Topic: Improper environment sanitization in rtld(1)
>>
>> Category: core
>> Module: rtld
>> Announced: 2009-12-03
>> Affects: FreeBSD 7.0 and later.
>> Corrected: 2009-12-01 02:59:22 UTC (RELENG_8, 8.0-STABLE)
>> 2009-12-03 09:18:40 UTC (RELENG_8_0, 8.0-RELEASE-p1)
>> 2009-12-01 03:00:16 UTC (RELENG_7, 7.2-STABLE)
>> 2009-12-03 09:18:40 UTC (RELENG_7_2, 7.2-RELEASE-p5)
>> 2009-12-03 09:18:40 UTC (RELENG_7_1, 7.1-RELEASE-p9)
>> CVE Name: CVE-2009-4146, CVE-2009-4147
>>
> [...]
>
> I think it's only cosmetic, but I couldn't see any change in the BRANCH
> (7.2: p4 -> p4?).
>
>
> Henrique
The file sys/conf/newvers.sh was not updated in the original commit.
Update your source once more and rebuild the kernel.
- Max
More information about the freebsd-security
mailing list