Date: Wed, 13 Nov 2019 14:56:02 -0500 From: George Mitchell <george+freebsd@m5p.com> To: FreeBSD Hackers <freebsd-hackers@FreeBSD.org> Subject: Correct SVN revision for latest security fix Message-ID: <7d65fc8f-e9b9-6472-199e-41f5010a8714@m5p.com>
next in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --l4Gox306sYYg5PTChRor5ZiWMWvZbbWUn Content-Type: multipart/mixed; boundary="fBCjldC9U5jFEP2jGBX2SkZABk2TMSEFx"; protected-headers="v1" From: George Mitchell <george+freebsd@m5p.com> To: FreeBSD Hackers <freebsd-hackers@FreeBSD.org> Message-ID: <7d65fc8f-e9b9-6472-199e-41f5010a8714@m5p.com> Subject: Correct SVN revision for latest security fix --fBCjldC9U5jFEP2jGBX2SkZABk2TMSEFx Content-Type: multipart/mixed; boundary="------------CA8E5A7E7D40B3B73312FEAD" Content-Language: en-US This is a multi-part message in MIME format. --------------CA8E5A7E7D40B3B73312FEAD Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable The attached security-advisories message cites an incorrect SVN revision number for updating to fix CVE-2018-12207. The revision given is r354653, but it should be r354654 to include the UPDATING fix and the newvers.sh change to report the correct "p" level. I sent a note about this as a reply to the message (so it actually went to freebsd-security), but I suspect my reply is lost in the moderation queue. Can someone please fix this? -- George --------------CA8E5A7E7D40B3B73312FEAD Content-Type: message/rfc822; name="FreeBSD Security Advisory FreeBSD-SA-19:25.mcepsc.eml" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="FreeBSD Security Advisory FreeBSD-SA-19:25.mcepsc.eml" X-Envelope-From: owner-freebsd-security-notifications@freebsd.org Return-Path: <owner-freebsd-security-notifications@freebsd.org> Received: from mx2.freebsd.org (mx2.freebsd.org [96.47.72.81]) by mailhost.m5p.com (8.15.2/8.15.2) with ESMTPS id xACJDPp5052116 (version=TLSv1.2 cipher=DHE-RSA-AES128-GCM-SHA256 bits=128 verify=OK) for <george+freebsd@m5p.com>; Tue, 12 Nov 2019 14:13:31 -0500 (EST) (envelope-from owner-freebsd-security-notifications@freebsd.org) Received: from mx1.freebsd.org (mx1.freebsd.org [96.47.72.80]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) (Client CN "mx1.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx2.freebsd.org (Postfix) with ESMTPS id 3371C7B33C; Tue, 12 Nov 2019 19:12:31 +0000 (UTC) (envelope-from owner-freebsd-security-notifications@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 47CHSG6s70z3x7b; Tue, 12 Nov 2019 19:12:30 +0000 (UTC) (envelope-from owner-freebsd-security-notifications@freebsd.org) Delivered-To: freebsd-security-notifications@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2E5491B6073 for <freebsd-security-notifications@mailman.nyi.freebsd.org>; Tue, 12 Nov 2019 19:12:06 +0000 (UTC) (envelope-from security-advisories@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2610:1c1:1:6074::16:84]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "freefall.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 47CHRp0VPxz3wh5; Tue, 12 Nov 2019 19:12:06 +0000 (UTC) (envelope-from security-advisories@freebsd.org) Received: by freefall.freebsd.org (Postfix, from userid 945) id 0A6751178; Tue, 12 Nov 2019 19:12:06 +0000 (UTC) From: FreeBSD Security Advisories <security-advisories@freebsd.org> To: FreeBSD Security Advisories <security-advisories@freebsd.org> Subject: FreeBSD Security Advisory FreeBSD-SA-19:25.mcepsc Precedence: bulk Message-Id: <20191112191206.0A6751178@freefall.freebsd.org> Date: Tue, 12 Nov 2019 19:12:06 +0000 (UTC) X-BeenThere: freebsd-security-notifications@freebsd.org X-Mailman-Version: 2.1.29 List-Id: "Moderated Security Notifications \[moderated, low volume\]" <freebsd-security-notifications.freebsd.org> List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security-notifications>, <mailto:freebsd-security-notifications-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security-notifications/>; List-Post: <mailto:freebsd-security-notifications@freebsd.org> List-Help: <mailto:freebsd-security-notifications-request@freebsd.org?subject=help> List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security-notifications>, <mailto:freebsd-security-notifications-request@freebsd.org?subject=subscribe> Reply-To: freebsd-security@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: owner-freebsd-security-notifications@freebsd.org Sender: owner-freebsd-security-notifications@freebsd.org X-Spam-Status: No, score=-6.0 required=10.0 tests=MAILING_LIST_MULTI, RCVD_IN_DNSWL_HI autolearn=unavailable autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mattapan.m5p.com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-19:25.mcepsc Security Advisory The FreeBSD Project Topic: Machine Check Exception on Page Size Change Category: core Module: kernel Announced: 2019-11-12 Credits: Intel Affects: All supported versions of FreeBSD. Corrected: 2019-11-12 18:03:26 UTC (stable/12, 12.1-STABLE) 2019-11-12 18:13:04 UTC (releng/12.1, 12.1-RELEASE-p1) 2019-11-12 18:13:04 UTC (releng/12.0, 12.0-RELEASE-p12) 2019-11-12 18:04:28 UTC (stable/11, 11.3-STABLE) 2019-11-12 18:13:04 UTC (releng/11.3, 11.3-RELEASE-p5) CVE Name: CVE-2018-12207 For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit <URL:https://security.FreeBSD.org/>. I. Background The Intel machine check architecture is a mechanism to detect and report hardware errors, such as system bus errors, ECC errors, parity errors, and others. This allows the processor to signal the detection of a machine check error to the operating system. II. Problem Description Intel discovered a previously published erratum on some Intel platforms can be exploited by malicious software to potentially cause a denial of service by triggering a machine check that will crash or hang the system. III. Impact Malicious guest operating systems may be able to crash the host. IV. Workaround No workaround is available. Systems not running untrusted guest virtual machines are not impacted. V. Solution Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date, and reboot. Perform one of the following: 1) To update your vulnerable system via a binary patch: Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility: # freebsd-update fetch # freebsd-update install # shutdown -r +10min "Rebooting for a security update" 2) To update your vulnerable system via a source code patch: The following patches have been verified to apply to the applicable FreeBSD release branches. a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility. [FreeBSD 12.1] # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.12.1.patch # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.12.1.patch.asc # gpg --verify mcepsc.12.1.patch.asc [FreeBSD 12.0] # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.12.0.patch # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.12.0.patch.asc # gpg --verify mcepsc.12.0.patch.asc [FreeBSD 11.3] # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.11.patch # fetch https://security.FreeBSD.org/patches/SA-19:25/mcepsc.11.patch.asc # gpg --verify mcepsc.11.patch.asc b) Apply the patch. Execute the following commands as root: # cd /usr/src # patch < /path/to/patch c) Recompile your kernel as described in <URL:https://www.FreeBSD.org/handbook/kernelconfig.html>; and reboot the system. VI. Correction details The following list contains the correction revision numbers for each affected branch. Branch/path Revision - ------------------------------------------------------------------------- stable/12/ r354650 releng/12.1/ r354653 releng/12.0/ r354653 stable/11/ r354651 releng/11.3/ r354653 - ------------------------------------------------------------------------- To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed: # svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base Or visit the following URL, replacing NNNNNN with the revision number: <URL:https://svnweb.freebsd.org/base?view=revision&revision=NNNNNN>; VII. References <URL:https://software.intel.com/security-software-guidance/software-guidance/machine-check-error-avoidance-page-size-change>; <URL:https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207>; The latest revision of this advisory is available at <URL:https://security.FreeBSD.org/advisories/FreeBSD-SA-19:25.mcepsc.asc>; -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEE/A6HiuWv54gCjWNV05eS9J6n5cIFAl3K+khfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEZD MEU4NzhBRTVBRkU3ODgwMjhENjM1NUQzOTc5MkY0OUVBN0U1QzIACgkQ05eS9J6n 5cIWdA//dTBwRIejd8vkgB/6wCLfXARU2Nw9je69JwfvpC/3BzkV+oD9rwoL7ltk NtOIu6otRmGnGHvC19WQ/JdlHUgtoxaxB26ROoU5BCYPJL7dU48T6l6RLbNXdMC4 MxU3mgbiDrVw9hhh42qKNVQ+ZzpMjgUPN1WRCyKQNlG7jNm5a8BvBaK0mFYkLdEw 9u+kNpXdaC9Ip45JI4QVS+jyK5JqFYWZw4SlB6AggcMO93QySzWWx4ZjXafw+0EK VoS8ByQ5nTlCVqq+hok+yVEz42mZ9AFSE1E1n3pe5TFZZmxF+NcDVMw324eLWUY3 pVX3S6Y0dCtKKvpyy2WIMrBV4Ro5BX3nQXJINdwCo2IlBRvJgK7u0wK3P0ionsJk Hc4x3sjZQm9Rhb8qqOh01wb7MjmGMWX/nlyishF6MAmnIV3dXctMaG00CSsIMbv9 jtx5v8uSGUHXb8bGYa6QLxaNN1gV6ZLMne1HLunkP7sCX9NYfibjkBXSIfNAkQTn MFrz9LLgy1K+8s2D1yFJZeyAZMWZ82yc14FSbux21pZS8MURpFt0OBYymAlzn0/J fhFEKg7rjKBuIBKjDycu9K8+s8h5TIGDROmgQojeqHm6wmlqyGVIPsREyBcCEvwM 16pasZC9s5C7aoSvzDExekR+LQOc8jVZ80KjNGmMga41tSANKTQ= =9nRn -----END PGP SIGNATURE----- _______________________________________________ freebsd-security-notifications@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security-notifications To unsubscribe, send any mail to "freebsd-security-notifications-unsubscribe@freebsd.org" --------------CA8E5A7E7D40B3B73312FEAD-- --fBCjldC9U5jFEP2jGBX2SkZABk2TMSEFx-- --l4Gox306sYYg5PTChRor5ZiWMWvZbbWUn Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEENdM4ZHktsJW5kKZXwRES3m+p4fkFAl3MX9IACgkQwRES3m+p 4flCnxAAnrUyA7lQnRYOVR4qd7T7BV0q44I0/nNgze2aRMo+niN6U2a2KyCcro1r lqA0HiSkRdMBAK1NZ/kJtMp52cEUK+d+BWaHOFYSDUrDEeznFvxEqYxQHCHWEXw8 sg5IpW6zb1fqZUeF5880hc9zHk5LPpxga1cJooM69+IsyTpTL65fxVL4nLcYLCV2 DpH3Ip7ou3yGdimEi+zqsY+hTJ1sYLk8nfsGRUvkB7uAG1dMdY2Kp5xiHy9dRvvv FPfLno6WszYQwZZiRi2EJ32a7CJJ3l1D6N3Y9Uwa3bNTiw8EYZ6DTdgBj/gN3fwd /vQ9g+egZjojtq2LnW8KZX21VLFjW/x5VSREBNYJ9N3ZHEYi8jsAph1qB15ehfFu EfQqcm94zWApDRw8P7Ib1pyBrcvf1gJFkXrbdPM2uBS/fr6Cj55Jvy8EJbaVzhYf 3qxa3VQ1GWWwfKSsvcxGp/RJDovrY9V6Aw+/s20iMGEwsOMLOCKTA7wV6wfQAXFk krMlOlfu2OABT2YKh8D8riQnbZ5/QxJh29axHMahsovLRC9HZDOUTst4SEjhEkH5 g/+iQ6BAlAYuajlHhXDtBIPcV/iNXiq5oRF0ucS2q0B5yd/6PlZ2ILbJiPlLygF7 6TiFlm+vz1xcNt71JuVOUnzTSiaHVjIstWg9dkVroPwin6cOyLw= =TKSy -----END PGP SIGNATURE----- --l4Gox306sYYg5PTChRor5ZiWMWvZbbWUn--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7d65fc8f-e9b9-6472-199e-41f5010a8714>