Date: Mon, 04 Aug 2003 00:54:00 -0700 From: Colin Percival <colin.percival@wadham.ox.ac.uk> To: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath Message-ID: <5.0.2.1.1.20030804004417.02bcc920@popserver.sfu.ca> In-Reply-To: <200308040004.h7404VVL030671@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
At 17:04 03/08/2003 -0700, you wrote: >V. Solution >2) To patch your present system: >a) Download the relevant patch... >b) Apply the patch... >c) Recompile your operating system... I hesitate to suggest that people leave their systems unpatched for longer than absolutely necessary, but there *will* be binary patches available for 4.7-RELEASE and 4.8-RELEASE -- as soon as I finish building them (ETA about 17 hours). This only applies to people who performed a binary install of FreeBSD 4.7 or 4.8 ***and have not recompiled the world locally***. Affected applications which were statically linked to the vulnerable code would still need to be recompiled. Once the binary updates are available, FreeBSD Update (security/freebsd-update in the ports tree) will be able to fetch and install them; I'll send another email to this list after they've been built, signed, and uploaded. Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.1.20030804004417.02bcc920>