Date: Wed, 17 Dec 2014 16:21:10 +0100 From: "C. L. Martinez" <carlopmart@gmail.com> To: security-advisories@freebsd.org Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-14:30.unbound Message-ID: <CAEjQA5JFaPmF47DS9eKLXwTajt-AK9WjSpqcA9NdjQX%2BNKZijQ@mail.gmail.com> In-Reply-To: <5491488E.4020405@gmx.de> References: <20141217083643.E0059421C@nine.des.no> <5491488E.4020405@gmx.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Dec 17, 2014 at 10:10 AM, olli hauer <ohauer@gmx.de> wrote: > On 2014-12-17 09:36, FreeBSD Security Advisories wrote: >> ============================================================================= >> FreeBSD-SA-14:30.unbound Security Advisory >> The FreeBSD Project >> >> Topic: unbound remote denial of service vulnerability >> >> Category: contrib >> Module: unbound >> Announced: 2014-12-17 >> Affects: FreeBSD 10.0-RELEASE and later >> Credits: Florian Maury (ANSSI) >> Corrected: 2014-12-17 06:58:00 UTC (stable/10, 10.1-STABLE) >> 2014-12-17 06:59:47 UTC (releng/10.1, 10.1-RELEASE-p2) >> 2014-12-17 06:59:47 UTC (releng/10.0, 10.0-RELEASE-p14) >> CVE Name: CVE-2014-8602 >> > ... > > Is there an issue with freebsd-update or an special reason the update wants to install lib32? > > > On a 10.1 (amd64) system: > > $ $ find /usr/lib32/ > /usr/lib32/ > /usr/lib32/dtrace > /usr/lib32/private > /usr/lib32/i18n > > > But the update wants to install additional /usr/lib32 files > > $ freebsd-update fetch > Looking up update.FreeBSD.org mirrors... none found. > Fetching metadata signature for 10.1-RELEASE from update.FreeBSD.org... done. > Fetching metadata index... done. > Fetching 2 metadata patches.. done. > Applying metadata patches... done. > Inspecting system... done. > Preparing to download files... done. > Fetching 8 patches..... done. > Applying patches... done. > Fetching *461* files... > [0] 0:phttpget* > > The following files will be added as part of updating to 10.1-RELEASE-p2: > /libexec/ld-elf32.so.1 > /usr/bin/ldd32 > /usr/lib32/Scrt1.o > /usr/lib32/crt1.o > ... > /usr/lib32/private/libyaml.so.1 > /usr/lib32/private/libyaml_p.a > /usr/libexec/ld-elf32.so.1 > Same here: Looking up update.FreeBSD.org mirrors... 5 mirrors found. Fetching metadata signature for 10.1-RELEASE from update5.freebsd.org... done. Fetching metadata index... done. Fetching 2 metadata patches.. done. Applying metadata patches... done. Inspecting system... done. Preparing to download files... done. Fetching 8 patches..... done. Applying patches... done. Fetching 461 files... done. The following files will be removed as part of updating to 10.1-RELEASE-p2: / The following files will be added as part of updating to 10.1-RELEASE-p2: /libexec/ld-elf32.so.1 /usr/bin/ldd32 /usr/lib32/Scrt1.o /usr/lib32/crt1.o /usr/lib32/crtbegin.o /usr/lib32/crtbeginS.o /usr/lib32/crtbeginT.o /usr/lib32/crtend.o /usr/lib32/crtendS.o .... Why all lib32 are needed for amd64 now??
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAEjQA5JFaPmF47DS9eKLXwTajt-AK9WjSpqcA9NdjQX%2BNKZijQ>