zeissoctopus 发表于 2013-04-05 19:43

安全漏洞 SA-13:03, SA-13:04

FreeBSD-SA-13:03.openssl

FreeBSD-SA-13:04.bind

升級至 FreeBSD 9.1-RELEASE-p2

ulovko 发表于 2013-04-06 16:44

火速升级 :emn31:

bsdvbird 发表于 2013-04-06 18:10

回复 2# ulovko


    在源码上只有patch可以用吗?能不能通过在https://github.com/freebsd/freebsd上同步最新的源码得到打过补丁的代码呢?求教 :dizzy:

bsdvbird 发表于 2013-04-06 18:17

回复 2# ulovko


    不好意思哈,那个声明是英文的,然后我对英文不敏感,结果浏览了一遍后没有注意到下边这些信息:

V.   Solution

Perform one of the following:

1) Upgrade your vulnerable system to a supported FreeBSD stable or
release / security branch (releng) dated dated after the correction
date.

2) To update your vulnerable system via a source code patch:

The following patches have been verified to apply to the applicable
FreeBSD release branches.

a) Download the relevant patch from the location below, and verify the
detached PGP signature using your PGP utility.


# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl.patch
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl.patch.asc
# gpg --verify openssl.patch.asc


# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl-9.1.patch
# fetch http://security.FreeBSD.org/patches/SA-13:03/openssl-9.1.patch.asc
# gpg --verify openssl-9.1.patch.asc

b) Execute the following commands as root:

# cd /usr/src
# patch < /path/to/patch

Recompile the operating system using buildworld and installworld as
described in <URL:http://www.FreeBSD.org/handbook/makeworld.html>.

Restart the all deamons using the library, or reboot your the system.

3) To update your vulnerable system via a binary patch:

Systems running a RELEASE version of FreeBSD on the i386 or amd64
platforms can be updated via the freebsd-update(8) utility:

# freebsd-update fetch
# freebsd-update install

VI.Correction details

The following list contains the revision numbers of each file that was
corrected in FreeBSD.

Branch/path                                                      Revision
- -------------------------------------------------------------------------
stable/8/                                                         r248057
releng/8.3/                                                       r249029
stable/9/                                                         r248272
releng/9.0/                                                       r249029
releng/9.1/                                                       r249029
- -------------------------------------------------------------------------


再次抱歉哈,我的上条回复直接无视掉吧!:em06:

fender0107401 发表于 2013-04-07 16:00

Update!

hellioncu 发表于 2013-04-07 16:46

# freebsd-update fetch
Looking up update.FreeBSD.org mirrors... 3 mirrors found.
Fetching metadata signature for 9.1-RELEASE from update5.freebsd.org... done.
Fetching metadata index... done.
Fetching 2 metadata files... failed.

为什么呢?
页: [1]
查看完整版本: 安全漏洞 SA-13:03, SA-13:04