FreeBSD Security Advisory FreeBSD-SA-14:30.unbound
olli hauer
ohauer at gmx.de
Wed Dec 17 11:10:12 UTC 2014
On 2014-12-17 09:36, FreeBSD Security Advisories wrote:
> =============================================================================
> FreeBSD-SA-14:30.unbound Security Advisory
> The FreeBSD Project
>
> Topic: unbound remote denial of service vulnerability
>
> Category: contrib
> Module: unbound
> Announced: 2014-12-17
> Affects: FreeBSD 10.0-RELEASE and later
> Credits: Florian Maury (ANSSI)
> Corrected: 2014-12-17 06:58:00 UTC (stable/10, 10.1-STABLE)
> 2014-12-17 06:59:47 UTC (releng/10.1, 10.1-RELEASE-p2)
> 2014-12-17 06:59:47 UTC (releng/10.0, 10.0-RELEASE-p14)
> CVE Name: CVE-2014-8602
>
...
Is there an issue with freebsd-update or an special reason the update wants to install lib32?
On a 10.1 (amd64) system:
$ $ find /usr/lib32/
/usr/lib32/
/usr/lib32/dtrace
/usr/lib32/private
/usr/lib32/i18n
But the update wants to install additional /usr/lib32 files
$ freebsd-update fetch
Looking up update.FreeBSD.org mirrors... none found.
Fetching metadata signature for 10.1-RELEASE from update.FreeBSD.org... done.
Fetching metadata index... done.
Fetching 2 metadata patches.. done.
Applying metadata patches... done.
Inspecting system... done.
Preparing to download files... done.
Fetching 8 patches..... done.
Applying patches... done.
Fetching *461* files...
[0] 0:phttpget*
The following files will be added as part of updating to 10.1-RELEASE-p2:
/libexec/ld-elf32.so.1
/usr/bin/ldd32
/usr/lib32/Scrt1.o
/usr/lib32/crt1.o
...
/usr/lib32/private/libyaml.so.1
/usr/lib32/private/libyaml_p.a
/usr/libexec/ld-elf32.so.1
More information about the freebsd-security
mailing list