Andy <[email protected]> writes: > On first look I couldn't see the exploit in that old PDF being listed on > the errata's. Maybe I'm being blind ;)
Or maybe you need to take a second look (010). The security problem is described, a workaround and a patch are available. Publishing an exact how-to-reproduce-and-expoit-a-bug isn't one of the the responsibilities of the OpenBSD project, afaik. > On Sat 07 Sep 2013 19:45:38 BST, Greg Thomas wrote: >> "Does this document still hold any truth with current OpenBSD;" >> >> Come on, really? >> >> http://www.openbsd.org/errata40.html >> >> >> On Sat, Sep 7, 2013 at 8:13 AM, andy <[email protected]> wrote: >> >>> Hi everyone, >>> >>> I have a feeling that I may get some strong opinions on this question, so >>> please don't flame me or anything, I'm asking because I don't know. >>> >>> Does this document still hold any truth with current OpenBSD; >>> >>> https://www.blackhat.com/presentations/bh-usa-07/Ortega/Whitepaper/bh-usa-07-ortega-WP.pdf >>> >>> Cheers, Andy. Ciao, -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
