From owner-freebsd-questions@FreeBSD.ORG Fri Dec 23 16:45:45 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3A7ED1065702 for ; Fri, 23 Dec 2011 16:45:45 +0000 (UTC) (envelope-from b.smeelen@ose.nl) Received: from mail.ose.nl (mail.ose.nl [212.178.134.164]) by mx1.freebsd.org (Postfix) with ESMTP id C8D1E8FC1F for ; Fri, 23 Dec 2011 16:45:44 +0000 (UTC) X-Footer: b3NlLm5s Received: from localhost ([127.0.0.1]) by mail.ose.nl for freebsd-questions@freebsd.org; Fri, 23 Dec 2011 17:45:42 +0100 From: "Bas Smeelen" To: freebsd-questions@freebsd.org Message-ID: <20111223164542.b74a8519@mail.ose.nl> Date: Fri, 23 Dec 2011 17:45:42 +0100 X-User-Agent: Mozilla/5.0 (Ubuntu; X11; Linux i686; rv:8.0) Gecko/20100101 Firefox/8.0 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: Fw: Merry Christmas from the FreeBSD Security Team X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Dec 2011 16:45:45 -0000 =5F=5F=5F=5F=5F =20 From: FreeBSD Security Officer [mailto:cperciva@freebsd.org] To: freebsd-security@freebsd.org Sent: Fri, 23 Dec 2011 16:41:20 +0100 Subject: Merry Christmas from the FreeBSD Security Team -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all, No, the Grinch didn't steal the FreeBSD security officer GPG key, and yo= ur eyes aren't deceiving you: We really did just send out 5 security advisories. The timing, to put it bluntly, sucks. We normally aim to release adviso= ries on Wednesdays in order to maximize the number of system administrators who = will be at work already; and we try very hard to avoid issuing advisories any ti= me close to holidays for the same reason. The start of the Christmas weekend -- = in some parts of the world it's already Saturday -- is absolutely not when we wa= nt to be releasing security advisories. Unfortunately my hand was forced: One of the issues (FreeBSD-SA-11:08.te= lnetd) is a remote root vulnerability which is being actively exploited in the = wild; bugs really don't come any worse than this. On the positive side, most = people have moved past telnet and on to SSH by now; but this is still not an is= sue we could postpone until a more convenient time. While I'm writing, a note to freebsd-update users: FreeBSD-SA-11:07.chro= ot has a rather messy fix involving adding a new interface to libc; this has the = awkward side effect of causing the sizes of some "symbols" (aka. functions) in l= ibc to change, resulting in cascading changes into many binaries. The long lis= t of updated files is irritating, but isn't a sign that anything in freebsd-u= pdate went wrong. - --=20 Colin Percival Security Officer, FreeBSD | freebsd.org | The power to serve Founder / author, Tarsnap | tarsnap.com | Online backups for the truly p= aranoid -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAk70oR8ACgkQFdaIBMps37IHEwCeNT8dws04qyJ8yuOz7g2xd9Xs IsoAn0QfaSE6i90zFBuk1k0isvrDMYO3 =3Dp94J -----END PGP SIGNATURE----- merry Christmas Disclaimer=3A http=3A//www=2Eose=2Enl/email