安全漏洞 SA-13:03, SA-13:04
FreeBSD-SA-13:03.opensslFreeBSD-SA-13:04.bind
升級至 FreeBSD 9.1-RELEASE-p2 火速升级 :emn31: 回复 2# ulovko
在源码上只有patch可以用吗?能不能通过在https://github.com/freebsd/freebsd上同步最新的源码得到打过补丁的代码呢?求教 :dizzy: 回复 2# ulovko
不好意思哈,那个声明是英文的,然后我对英文不敏感,结果浏览了一遍后没有注意到下边这些信息:
V. Solution
Perform one of the following:
1) Upgrade your vulnerable system to a supported FreeBSD stable or
release / security branch (releng) dated dated after the correction
date.
2) To update your vulnerable system via a source code patch:
The following patches have been verified to apply to the applicable
FreeBSD release branches.
a) Download the relevant patch from the location below, and verify the
detached PGP signature using your PGP utility.
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl.patch
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl.patch.asc
# gpg --verify openssl.patch.asc
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl-9.1.patch
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl-9.1.patch.asc
# gpg --verify openssl-9.1.patch.asc
b) Execute the following commands as root:
# cd /usr/src
# patch < /path/to/patch
Recompile the operating system using buildworld and installworld as
described in <URL:http://www.FreeBSD.org/handbook/makeworld.html>.
Restart the all deamons using the library, or reboot your the system.
3) To update your vulnerable system via a binary patch:
Systems running a RELEASE version of FreeBSD on the i386 or amd64
platforms can be updated via the freebsd-update(8) utility:
# freebsd-update fetch
# freebsd-update install
VI.Correction details
The following list contains the revision numbers of each file that was
corrected in FreeBSD.
Branch/path Revision
- -------------------------------------------------------------------------
stable/8/ r248057
releng/8.3/ r249029
stable/9/ r248272
releng/9.0/ r249029
releng/9.1/ r249029
- -------------------------------------------------------------------------
再次抱歉哈,我的上条回复直接无视掉吧!:em06: Update! # freebsd-update fetch
Looking up update.FreeBSD.org mirrors... 3 mirrors found.
Fetching metadata signature for 9.1-RELEASE from update5.freebsd.org... done.
Fetching metadata index... done.
Fetching 2 metadata files... failed.
为什么呢?
页:
[1]