On Thu, 23 Apr 2009 15:34:31 +0100 Stuart Henderson <s...@spacehopper.org> wrote:
> try a newer kernel, I think some pool corruption was fixed since then. I'm preparing to upgrade a whole bunch of box to 4.5 in the mean time i would like to ask if the panic could be caused by: 012: RELIABILITY FIX: April 8, 2009 All architectures The OpenSSL ASN.1 handling code could be forced to perform invalid memory accesses through the use of certain invalid strings (CVE-2009-0590) or under certain error conditions triggerable by invalid ASN.1 structures (CVE-2009-0789). These vulnerabilities could be exploited to achieve a denial-of-service. A more detailed description of these problems is available in the OpenSSL security advisory, but note that the other issue described there "Incorrect Error Checking During CMS verification" relates to code not enabled in OpenBSD. A source code patch exists which remedies this problem. Regards -- Massimo _______________________________________________ flashboot mailing list flashboot@mindrot.org https://lists.mindrot.org/mailman/listinfo/flashboot
