NetBSD 5.0 Security Advisories
Below is the list of advisories applicable to the NetBSD 5.0 release:
- A description and resolution procedure for TCP LAST_ACK state memory exhaustion can be found in NetBSD Security Advisory NetBSD-SA2015-009
- A description and resolution procedure for OpenSSL and TLS protocol vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2015-008
- A description and resolution procedure for OpenSSL and SSLv3 vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2015-007
- A description and resolution procedure for OpenSSL and SSLv3 vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2015-006
- A description and resolution procedure for buffer overflow in libevent (CVE-2014-6272) can be found in NetBSD Security Advisory NetBSD-SA2015-005
- A description and resolution procedure for Two vulnerabilities in the compatibility layers can be found in NetBSD Security Advisory NetBSD-SA2015-004
- A description and resolution procedure for NTPd multiple vulnerabilities (CVE-2014-929[3-6]) can be found in NetBSD Security Advisory NetBSD-SA2015-003
- A description and resolution procedure for bind Denial of Service (CVE-2014-8500) can be found in NetBSD Security Advisory NetBSD-SA2015-002
- A description and resolution procedure for Protocol handling issues in X Window System servers can be found in NetBSD Security Advisory NetBSD-SA2015-001
- A description and resolution procedure for Memory leak in the setsockopt system call can be found in NetBSD Security Advisory NetBSD-SA2014-012
- A description and resolution procedure for User-controlled memory allocation in the modctl system call can be found in NetBSD Security Advisory NetBSD-SA2014-011
- A description and resolution procedure for Multiple vulnerabilities in the compatibility layers can be found in NetBSD Security Advisory NetBSD-SA2014-010
- A description and resolution procedure for Multiple OpenSSL vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2014-008
- A description and resolution procedure for bozohttpd basic http authentication bypass can be found in NetBSD Security Advisory NetBSD-SA2014-007
- A description and resolution procedure for Multiple OpenSSL vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2014-006
- A description and resolution procedure for libXfont multiple vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2014-005
- A description and resolution procedure for ntpd used as DDoS amplifier can be found in NetBSD Security Advisory NetBSD-SA2014-002
- A description and resolution procedure for Stack buffer overflow in libXfont can be found in NetBSD Security Advisory NetBSD-SA2014-001
- A description and resolution procedure for Router Advertisement sysctl local Denial of Service can be found in NetBSD Security Advisory NetBSD-SA2013-012
- A description and resolution procedure for embryonic TCP sockets local DoS can be found in NetBSD Security Advisory NetBSD-SA2013-011
- A description and resolution procedure for Use after free in Xserver handling of ImageText requests can be found in NetBSD Security Advisory NetBSD-SA2013-010
- A description and resolution procedure for user settable small BPF buffer can cause a panic can be found in NetBSD Security Advisory NetBSD-SA2013-009
- A description and resolution procedure for Protocol handling issues in X Window System client libraries can be found in NetBSD Security Advisory NetBSD-SA2013-007
- A description and resolution procedure for Arbitrary Kernel Read with netstat -P can be found in NetBSD Security Advisory NetBSD-SA2013-006
- A description and resolution procedure for bind Denial of Service (CVE-2013-4854) can be found in NetBSD Security Advisory NetBSD-SA2013-005
- A description and resolution procedure for Vulnerabilities in grep can be found in NetBSD Security Advisory NetBSD-SA2013-004
- A description and resolution procedure for BIND resolver DoS when using DNSSEC Validation can be found in NetBSD Security Advisory NetBSD-SA2012-004
- A description and resolution procedure for Intel processors sysret to non-canonical address behaviour can be found in NetBSD Security Advisory NetBSD-SA2012-003
- A description and resolution procedure for OpenSSL Invalid TLS/DTLS record attack can be found in NetBSD Security Advisory NetBSD-SA2012-002
- A description and resolution procedure for OpenSSL buffer overflow in DER read function can be found in NetBSD Security Advisory NetBSD-SA2012-001
- A description and resolution procedure for BIND resolver DoS can be found in NetBSD Security Advisory NetBSD-SA2011-009
- A description and resolution procedure for OpenPAM privilege escalation can be found in NetBSD Security Advisory NetBSD-SA2011-008
- A description and resolution procedure for LZW decoding loop on manipulated compressed files can be found in NetBSD Security Advisory NetBSD-SA2011-007
- A description and resolution procedure for BIND DoS via packet with rrtype zero can be found in NetBSD Security Advisory NetBSD-SA2011-006
- A description and resolution procedure for ISC dhclient does not strip shell meta-characters in can be found in NetBSD Security Advisory NetBSD-SA2011-005
- A description and resolution procedure for Kernel stack overflow via nested IPCOMP packet can be found in NetBSD Security Advisory NetBSD-SA2011-004
- A description and resolution procedure for Exhausting kernel memory from user controlled value can be found in NetBSD Security Advisory NetBSD-SA2011-003
- A description and resolution procedure for OpenSSL TLS extension parsing race condition. can be found in NetBSD Security Advisory NetBSD-SA2011-002
- A description and resolution procedure for BIND DoS due to improper handling of RRSIG records can be found in NetBSD Security Advisory NetBSD-SA2011-001
- A description and resolution procedure for UDP6 Option Parsing local Denial of Service can be found in NetBSD Security Advisory NetBSD-SA2010-013
- A description and resolution procedure for OpenSSL TLS extension parsing race condition. can be found in NetBSD Security Advisory NetBSD-SA2010-012
- A description and resolution procedure for OpenSSL Double Free Arbitrary Code Execution can be found in NetBSD Security Advisory NetBSD-SA2010-011
- A description and resolution procedure for Buffer Length Handling Errors in netsmb can be found in NetBSD Security Advisory NetBSD-SA2010-010
- A description and resolution procedure for sftp(1)/ftp(1)/glob(3) related resource exhaustion can be found in NetBSD Security Advisory NetBSD-SA2010-008
- A description and resolution procedure for Integer overflow in libbz2 decompression code can be found in NetBSD Security Advisory NetBSD-SA2010-007
- A description and resolution procedure for Buffer length checking errors in CODA can be found in NetBSD Security Advisory NetBSD-SA2010-006
- A description and resolution procedure for NTP server Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2010-005
- A description and resolution procedure for amd64 per-page No-execute (NX) bit disabled can be found in NetBSD Security Advisory NetBSD-SA2010-004
- A description and resolution procedure for azalia(4)/hdaudio(4) negative mixer index panic can be found in NetBSD Security Advisory NetBSD-SA2010-003
- A description and resolution procedure for OpenSSL TLS renegotiation man in the middle vulnerability can be found in NetBSD Security Advisory NetBSD-SA2010-002
- A description and resolution procedure for File system module autoloading Denial of Service attack can be found in NetBSD Security Advisory NetBSD-SA2010-001
- A description and resolution procedure for BIND named dynamic update Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2009-013
- A description and resolution procedure for SHA2 implementation potential buffer overflow can be found in NetBSD Security Advisory NetBSD-SA2009-012
- A description and resolution procedure for ISC DHCP server Denial of Service vulnerability can be found in NetBSD Security Advisory NetBSD-SA2009-011
- A description and resolution procedure for ISC dhclient subnet-mask flag stack overflow can be found in NetBSD Security Advisory NetBSD-SA2009-010
- A description and resolution procedure for OpenSSL DTLS Memory Exhaustion and DSA signature verification vulnerabilities can be found in NetBSD Security Advisory NetBSD-SA2009-009
- A description and resolution procedure for OpenSSL ASN1 parsing denial of service and CMS signature verification weakness can be found in NetBSD Security Advisory NetBSD-SA2009-008
- A description and resolution procedure for Buffer overflows in hack(6) can be found in NetBSD Security Advisory NetBSD-SA2009-007
- A description and resolution procedure for Buffer overflows in ntp can be found in NetBSD Security Advisory NetBSD-SA2009-006
- A description and resolution procedure for Plaintext Recovery Attack Against SSH can be found in NetBSD Security Advisory NetBSD-SA2009-005
- A description and resolution procedure for NetBSD OpenPAM passwd(1) changing weakness can be found in NetBSD Security Advisory NetBSD-SA2009-004