From owner-freebsd-security@FreeBSD.ORG Wed Dec 17 11:10:12 2014 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id A4CFD15FD; Wed, 17 Dec 2014 11:10:12 +0000 (UTC) Received: from mout.gmx.net (mout.gmx.net [212.227.17.20]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 373D967C; Wed, 17 Dec 2014 11:10:11 +0000 (UTC) Received: from [192.168.0.100] ([87.139.233.65]) by mail.gmx.com (mrgmx101) with ESMTPSA (Nemesis) id 0M0LtB-1Xmf4q30vN-00uabL; Wed, 17 Dec 2014 10:10:37 +0100 Message-ID: <5491488E.4020405@gmx.de> Date: Wed, 17 Dec 2014 10:10:38 +0100 From: olli hauer Reply-To: security-advisories@freebsd.org User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:31.0) Gecko/20100101 Thunderbird/31.3.0 MIME-Version: 1.0 To: FreeBSD Security Advisories Subject: Re: FreeBSD Security Advisory FreeBSD-SA-14:30.unbound References: <20141217083643.E0059421C@nine.des.no> In-Reply-To: <20141217083643.E0059421C@nine.des.no> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K0:9TlOlzXVojqwjCumCe1mf6TOz0TdYUMtTC1+H8/wk5f5OPwA6zw rLJDgIwCH66Y+tsMekyp7EV2uW8zsNImBmeMg6KYAev3VH73oAYfcqgzQjPpm0Ye0Bcs0iR GlV4OBl+6qhqgHqEIOfm1N/kwmItuXrFjpIGk9fnbqE3fGtxbYPjCzQgWALrVu6bVzhSkwb LMAzXCq3KYsDCiG4fwHPw== X-UI-Out-Filterresults: notjunk:1; Cc: freebsd-security@freebsd.org X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Dec 2014 11:10:12 -0000 On 2014-12-17 09:36, FreeBSD Security Advisories wrote: > ============================================================================= > FreeBSD-SA-14:30.unbound Security Advisory > The FreeBSD Project > > Topic: unbound remote denial of service vulnerability > > Category: contrib > Module: unbound > Announced: 2014-12-17 > Affects: FreeBSD 10.0-RELEASE and later > Credits: Florian Maury (ANSSI) > Corrected: 2014-12-17 06:58:00 UTC (stable/10, 10.1-STABLE) > 2014-12-17 06:59:47 UTC (releng/10.1, 10.1-RELEASE-p2) > 2014-12-17 06:59:47 UTC (releng/10.0, 10.0-RELEASE-p14) > CVE Name: CVE-2014-8602 > ... Is there an issue with freebsd-update or an special reason the update wants to install lib32? On a 10.1 (amd64) system: $ $ find /usr/lib32/ /usr/lib32/ /usr/lib32/dtrace /usr/lib32/private /usr/lib32/i18n But the update wants to install additional /usr/lib32 files $ freebsd-update fetch Looking up update.FreeBSD.org mirrors... none found. Fetching metadata signature for 10.1-RELEASE from update.FreeBSD.org... done. Fetching metadata index... done. Fetching 2 metadata patches.. done. Applying metadata patches... done. Inspecting system... done. Preparing to download files... done. Fetching 8 patches..... done. Applying patches... done. Fetching *461* files... [0] 0:phttpget* The following files will be added as part of updating to 10.1-RELEASE-p2: /libexec/ld-elf32.so.1 /usr/bin/ldd32 /usr/lib32/Scrt1.o /usr/lib32/crt1.o ... /usr/lib32/private/libyaml.so.1 /usr/lib32/private/libyaml_p.a /usr/libexec/ld-elf32.so.1