I tried installing FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive The patch failed. Am I doing something wrong? Is it not designed for my system? oz# uname -a FreeBSD oz.caah.org 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Thu Oct 12 07:40:47 EST 2006 root@:/usr/obj/usr/src/sys/GENERIC i386 oz# patch < /home/sbiber/libarchive.patch Hmm... Looks like a unified diff to me... The text leading up to this was: -------------------------- |Index: lib/libarchive/archive_read_support_compression_none.c |==================================================================|RCS file: /home/ncvs/src/lib/libarchive/archive_read_support_compression_none.c,v |retrieving revision 1.8 |diff -u -I__FBSDID -r1.8 archive_read_support_compression_none.c |--- lib/libarchive/archive_read_support_compression_none.c 29 Aug 2006 04:59:25 -0000 1.8 |+++ lib/libarchive/archive_read_support_compression_none.c 2 Nov 2006 05:17:28 -0000 -------------------------- Patching file lib/libarchive/archive_read_support_compression_none.c using Plan A... Hunk #1 failed at 257. Hunk #2 failed at 289. Hunk #3 failed at 307. Hunk #4 failed at 320. 4 out of 4 hunks failed--saving rejects to lib/libarchive/archive_read_support_compression_none.c.rej done -- Simon.
On Thu, Nov 09, 2006 at 05:49:20PM +1100, Simon Biber wrote:> I tried installing FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive > > The patch failed. Am I doing something wrong? Is it not designed for my system? >I had the same problem as Simon on 6.1 boxes.> |+++ lib/libarchive/archive_read_support_compression_none.c 2 Nov 2006 > 05:17:28 -0000 > -------------------------- > Patching file lib/libarchive/archive_read_support_compression_none.c using Plan > A... > Hunk #1 failed at 257. > Hunk #2 failed at 289. > Hunk #3 failed at 307. > Hunk #4 failed at 320. > 4 out of 4 hunks failed--saving rejects to > lib/libarchive/archive_read_support_compression_none.c.rej > done >It worked on 2 boxes running 6.2-PRERELEASE -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Buffy: It was exactly you, Will. Every detail. Except for your not being a dominatrix... as far as we know. Willow: Oh, right, me and Oz play Mistress of Pain every night. Xander: Did anyone else just go to a scary visual place? Buffy: Oh, yeah. Giles: (raises glasses)
On Thu, 09 Nov 2006 17:49:20 +1100 Simon Biber <simonbiber@yahoo.com.au> wrote:> I tried installing FreeBSD Security Advisory > FreeBSD-SA-06:24.libarchive > > The patch failed. Am I doing something wrong? Is it not designed for > my system?From the SA: Affects: FreeBSD 6-STABLE after 2006-09-05 05:23:51 UTC This SA does not affect 6.1-RELEASE, the patch does not apply.> oz# uname -a > FreeBSD oz.caah.org 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Thu Oct 12 > 07:40:47 EST 2006 root@:/usr/obj/usr/src/sys/GENERIC i386The best way to get all SAs that affect you is to either use freebsd-update or follow the RELENG_6_1 branch via csup. Joerg -- | /"\ ASCII ribbon | GnuPG Key ID | e86d b753 3deb e749 6c3a | | \ / campaign against | 0xbbcaad24 | 5706 1f7d 6cfd bbca ad24 | | X HTML in email | .the next sentence is true. | | / \ and news | .the previous sentence was a lie. | -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20061109/95a7ea9a/signature.pgp
On 11/9/06, Scott Robbins <scottro@nyc.rr.com> wrote:> On Thu, Nov 09, 2006 at 05:49:20PM +1100, Simon Biber wrote: > > I tried installing FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive > > > > The patch failed. Am I doing something wrong? Is it not designed for my system? > > > > I had the same problem as Simon on 6.1 boxes.. . .> > It worked on 2 boxes running 6.2-PRERELEASE >To quote http://security.freebsd.org/advisories/FreeBSD-SA-06:24.libarchive.asc Affects: FreeBSD 6-STABLE after 2006-09-05 05:23:51 UTC -- --
On Thu, 9 Nov 2006, Simon Biber wrote:> I tried installing FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive > > The patch failed. Am I doing something wrong? Is it not designed for my > system?Correct. http://security.freebsd.org/advisories/FreeBSD-SA-06:24.libarchive.asc notes that this only affects systems built from the 6-STABLE branch after 2006-09-05 05:23:51 UTC.> oz# uname -a > FreeBSD oz.caah.org 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Thu Oct 12 > 07:40:47 EST 2006 root@:/usr/obj/usr/src/sys/GENERIC i386You're running 6.1-RELEASE, which does not fit this criteria. Your system is not vulnerable to the exploit. David Adam zanchey@ucc.gu.uwa.edu.au
On 11/9/06, Simon Biber <simonbiber@yahoo.com.au> wrote:> I tried installing FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive > > The patch failed. Am I doing something wrong? Is it not designed for my > system? > > oz# uname -a > FreeBSD oz.caah.org 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Thu Oct 12 > 07:40:47 EST 2006 root@:/usr/obj/usr/src/sys/GENERIC i386 >According to Simon, this security advisory doesn't affect 6.1-RELEASE. On 11/8/06, Simon L. Nielsen <simon@freebsd.org> wrote:> On 2006.11.08 10:36:02 -0500, Josh Paetzel wrote: > > Maybe this is an obvious question, but libarchive has been in the > > system since 5.3, but this issue only affects RELENG_6? So anyone > > tracking RELENG_6_1 isn't affected? > > Correct, the bug was introduced after 6.1 was branched. > > -- > Simon L. Nielsen > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" >Scot -- DISCLAIMER: No electrons were mamed while sending this message. Only slightly bruised.