NetBSD 4.0 Security Advisories
Below is the list of advisories applicable to the NetBSD 4.0 release:
- A description and resolution procedure for BIND resolver DoS when using DNSSEC Validation can be found in NetBSD Security Advisory NetBSD-SA2012-004
- A description and resolution procedure for Intel processors sysret to non-canonical address behaviour can be found in NetBSD Security Advisory NetBSD-SA2012-003
- A description and resolution procedure for OpenSSL Invalid TLS/DTLS record attack can be found in NetBSD Security Advisory NetBSD-SA2012-002
- A description and resolution procedure for OpenSSL buffer overflow in DER read function can be found in NetBSD Security Advisory NetBSD-SA2012-001
- A description and resolution procedure for BIND resolver DoS can be found in NetBSD Security Advisory NetBSD-SA2011-009
- A description and resolution procedure for OpenPAM privilege escalation can be found in NetBSD Security Advisory NetBSD-SA2011-008
- A description and resolution procedure for LZW decoding loop on manipulated compressed files can be found in NetBSD Security Advisory NetBSD-SA2011-007
- A description and resolution procedure for BIND DoS via packet with rrtype zero can be found in NetBSD Security Advisory NetBSD-SA2011-006
- A description and resolution procedure for ISC dhclient does not strip shell meta-characters in can be found in NetBSD Security Advisory NetBSD-SA2011-005
- A description and resolution procedure for Kernel stack overflow via nested IPCOMP packet can be found in NetBSD Security Advisory NetBSD-SA2011-004
- A description and resolution procedure for Exhausting kernel memory from user controlled value can be found in NetBSD Security Advisory NetBSD-SA2011-003
- A description and resolution procedure for BIND DoS due to improper handling of RRSIG records can be found in NetBSD Security Advisory NetBSD-SA2011-001
- A description and resolution procedure for UDP6 Option Parsing local Denial of Service can be found in NetBSD Security Advisory NetBSD-SA2010-013
- A description and resolution procedure for OpenSSL Double Free Arbitrary Code Execution can be found in NetBSD Security Advisory NetBSD-SA2010-011
- A description and resolution procedure for Buffer Length Handling Errors in netsmb can be found in NetBSD Security Advisory NetBSD-SA2010-010
- A description and resolution procedure for Privilege Handling Errors In larn can be found in NetBSD Security Advisory NetBSD-SA2010-009
- A description and resolution procedure for sftp(1)/ftp(1)/glob(3) related resource exhaustion can be found in NetBSD Security Advisory NetBSD-SA2010-008
- A description and resolution procedure for Integer overflow in libbz2 decompression code can be found in NetBSD Security Advisory NetBSD-SA2010-007
- A description and resolution procedure for Buffer length checking errors in CODA can be found in NetBSD Security Advisory NetBSD-SA2010-006
- A description and resolution procedure for NTP server Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2010-005
- A description and resolution procedure for azalia(4)/hdaudio(4) negative mixer index panic can be found in NetBSD Security Advisory NetBSD-SA2010-003
- A description and resolution procedure for OpenSSL TLS renegotiation man in the middle vulnerability can be found in NetBSD Security Advisory NetBSD-SA2010-002
- A description and resolution procedure for BIND named dynamic update Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2009-013
- A description and resolution procedure for SHA2 implementation potential buffer overflow can be found in NetBSD Security Advisory NetBSD-SA2009-012
- A description and resolution procedure for ISC DHCP server Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2009-011
- A description and resolution procedure for ISC dhclient subnet-mask flag stack overflow can be found in NetBSD Security Advisory NetBSD-SA2009-010
- A description and resolution procedure for OpenSSL DTLS Memory Exhaustion and DSA signature verification vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2009-009
- A description and resolution procedure for OpenSSL ASN1 parsing denial of service and CMS signature verification weakness can be found in NetBSD Security Advisory NetBSD-SA2009-008
- A description and resolution procedure for Buffer overflows in hack(6) can be found in NetBSD Security Advisory NetBSD-SA2009-007
- A description and resolution procedure for Buffer overflows in ntp can be found in NetBSD Security Advisory NetBSD-SA2009-006
- A description and resolution procedure for Plaintext Recovery Attack Against SSH can be found in NetBSD Security Advisory NetBSD-SA2009-005
- A description and resolution procedure for NetBSD OpenPAM passwd(1) changing weakness can be found in NetBSD Security Advisory NetBSD-SA2009-004
- A description and resolution procedure for proplib crashes on reading bad XML data can be found in NetBSD Security Advisory NetBSD-SA2009-003
- A description and resolution procedure for tcpdump multiple denial of service and arbitrary code execution issues can be found in NetBSD Security Advisory NetBSD-SA2009-002
- A description and resolution procedure for ICMPv6 Packet Too Big messages can be found in NetBSD Security Advisory NetBSD-SA2008-015
- A description and resolution procedure for Cross-site request forgery in ftpd(8) can be found in NetBSD Security Advisory NetBSD-SA2008-014
- A description and resolution procedure for IPv6 Neighbor Discovery Protocol can be found in NetBSD Security Advisory NetBSD-SA2008-013
- A description and resolution procedure for Denial of service issues in racoon(8) can be found in NetBSD Security Advisory NetBSD-SA2008-012
- A description and resolution procedure for ICMPv6 MLD query can be found in NetBSD Security Advisory NetBSD-SA2008-011
- A description and resolution procedure for Malicious PPPoE discovery packet can overrun a kernel buffer can be found in NetBSD Security Advisory NetBSD-SA2008-010
- A description and resolution procedure for BIND cache poisoning can be found in NetBSD Security Advisory NetBSD-SA2008-009
- A description and resolution procedure for OpenSSL Montgomery multiplication can be found in NetBSD Security Advisory NetBSD-SA2008-008
- A description and resolution procedure for Integer overflow in strfmon(3) function can be found in NetBSD Security Advisory NetBSD-SA2008-006
- A description and resolution procedure for OpenSSH Multiple issues can be found in NetBSD Security Advisory NetBSD-SA2008-005
- A description and resolution procedure for bzip2(1) Multiple issues can be found in NetBSD Security Advisory NetBSD-SA2008-004