如何应用补丁看这里:http://www.gobsd.org/showthread.php?t=2175
不过感觉还是CVS比较好,尽管需要将三种源代码都更新了,但最起码只编译一次就OK了。
This is the OpenBSD 4.8 release errata & patch list:
For OpenBSD patch branch information, please refer here.
For errata on a certain release, click below:
2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 3.0, 3.1, 3.2, 3.3, 3.4, 3.5, 3.6,
3.7, 3.8, 3.9, 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 4.6, 4.7.
You can also fetch a tar.gz file containing all the following patches. This file is updated once a day.
The patches below are available in CVS via the OPENBSD_4_8 patch branch.
For more detailed information on how to install patches to OpenBSD, please consult the OpenBSD FAQ.
- 004: RELIABILITY FIX: November 17, 2010 All architectures
- Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to a buffer overflow. This affects OpenSSL based TLS servers which are multi-threaded and use OpenSSL's internal caching mechanism. Servers that are multi-process and/or disable internal session caching are not affected.
A source code patch exists which remedies this problem.
- 003: RELIABILITY FIX: November 16, 2010 All architectures
The vr(4) driver may hand over stale ring descriptors to the hardware if the compiler decides to re-order stores or if the hardware does store-reordering.
A source code patch exists which remedies this problem.
- 002: RELIABILITY FIX: November 16, 2010 All architectures
Certain PCI based hardware may improperly announce their Base Address Registers as prefetchable even though they are not. This may cause unpredictable effects due to wrongly mapped memory.
A source code patch exists which remedies this problem.
- 001: RELIABILITY FIX: November 16, 2010 All architectures
Uninitialized memory may force the RDE into route-collector mode on startup and may prevent bgpd from updating or announcing any routes.
A source code patch exists which remedies this problem.