From owner-freebsd-security@FreeBSD.ORG Thu Aug 7 05:57:51 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D090837B401 for ; Thu, 7 Aug 2003 05:57:51 -0700 (PDT) Received: from gandalf.online.bg (gandalf.online.bg [217.75.128.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 1732B43FBF for ; Thu, 7 Aug 2003 05:57:09 -0700 (PDT) (envelope-from roam@ringlet.net) Received: (qmail 14164 invoked from network); 7 Aug 2003 12:48:42 -0000 Received: from office.sbnd.net (HELO straylight.ringlet.net) (217.75.140.130) by gandalf.online.bg with SMTP; 7 Aug 2003 12:48:42 -0000 Received: (qmail 49754 invoked by uid 1000); 7 Aug 2003 12:57:05 -0000 Date: Thu, 7 Aug 2003 15:57:05 +0300 From: Peter Pentchev To: Francisco Reyes Message-ID: <20030807125705.GO358@straylight.oblivion.bg> Mail-Followup-To: Francisco Reyes , "Jacques A. Vidrine" , FreeBSD Security List References: <20030806195732.U69121@zoraida.natserv.net> <20030807020722.GA78718@madman.celabo.org> <20030807084916.F77388@zoraida.natserv.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="lRMsAdG4hjP4MFkn" Content-Disposition: inline In-Reply-To: <20030807084916.F77388@zoraida.natserv.net> User-Agent: Mutt/1.5.4i cc: "Jacques A. Vidrine" cc: FreeBSD Security List Subject: Re: Checking realpath file up to date X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Aug 2003 12:57:52 -0000 --lRMsAdG4hjP4MFkn Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Aug 07, 2003 at 08:50:56AM -0400, Francisco Reyes wrote: > On Wed, 6 Aug 2003, Jacques A. Vidrine wrote: >=20 > > Sounds like you cvsup'd RELENG_4, not RELENG_4_8. >=20 >=20 > I went back to the handbook to read the difference between these two. > If I understand correct RELENG_4 is basically the latest of the 4.X > branch. The RELENG_# are basically only security patches for a particular > 4.# release. Do I understand it correctly? If you meant RELENG_4_# where you said RELENG_#, then yes, this is correct. The RELENG_4 branch was not affected, since shortly after FreeBSD 4.8-RELEASE was out, a new version of realpath(3) was imported into the tree, and it did not have this problem. Thus, if you have a reasonably recent -STABLE (you seem to, since you mention realpath.c rev. 1.9.2.2), there's nothing to fear - not for this problem, at least. G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 I am the meaning of this sentence. --lRMsAdG4hjP4MFkn Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE/Mkyg7Ri2jRYZRVMRAj40AJsGeEIBc6zyIDtadKY4XKDtjOCDFwCfdKwq kavc2RaWT2zynUYpdOh6kv8= =BCiB -----END PGP SIGNATURE----- --lRMsAdG4hjP4MFkn--