The NetBSD Project is pleased to announce that NetBSD 1.6.1 has been

branched and the release engineering process has begun.  NetBSD 1.6.1 is

a maintenance (or patch) release for users of NetBSD 1.6, not to be

confused with NetBSD-current (which will become the next major release).

As a patch release, it is not branched off the head of the CVS source

tree, but instead includes all security fixes and patches applied to the

1.6 branch.
A complete list of changes since 1.6 is available in

src/doc/CHANGES-1.6.1 of the branch, which can be checked out by passing

the '-rnetbsd-1-6-PATCH001-RC1' flag to the cvs command:
cvs co -rnetbsd-1-6-PATCH001-RC1 src
Details on the release cycle and status information is available from

http://www.netbsd.org/releng/releng-1.6.html.
--

http://www.netbsd.org -

         Multiarchitecture OS, no hype required.

[For a full list of changes, please refer to the tech-pkg mailing

list - agc]
Summary of Changes to the NetBSD Packages Collection in June 2003

=================================================================
By my calculations, at the end of June 2003, there were 3820 packages

in the NetBSD Packages Collection, up from 3762 the previous month, a

rise of 58.
Notable additions include:  abook, adocman, afio, aide,

airport2basestationconfig, bftpd, bomberclone, bomberclone-data,

classpath, code2html, dc_gui2, defendguin, dosbox, dqs, dvdrip, ess,

fftw2, gcal, gdeskcal, GeoIP, gimp-wideangle, gini, gnuplot-nox11,

gnuserv, gocr, hamlib, icewm-imlib, kdirstat, libgsf, linuxsms,

majesty-demo, metacity-setup, mjpegtools, p5-DBD-XBase, p5-Gdk-Pixbuf,

p5-Geography-Countries, pkg_install-info, plotutils-nox11, privoxy,

py-checker, py-dns, py-MyHDL, py-sqlite, rc.subr, shmux, ssmtp,

subtitleripper, swiftsurf, tcx, tet3, tob, toolame, transcode,

tuxmath, vim-gtk2, vms-empire, waste, xlockmore-lite, xmms-liveice,

and xmule.
Notable updates include:  2vcard, 9menu, abcde, acroread5, adzap,

ap-throttle, ap2-subversion, apache-ant, apg, arch, asm2html, asp2php,

audit-packages, autogen, bash, BasiliskII, binutils, boehm-gc,

bogofilter, bozohttpd, calamaris, Canna-dict, Canna-lib, Canna-server,

Canna-server-bin, cassowary, cdrecord, centericq, cfengine, cfengine2,

check, clamav, coq, cpuflags, cronolog, ctwm, cue, cups, cvsgraph,

cvsync, cweb, db4, dctc, dc_gui, ddd, ddskk, dejagnu, dircproxy,

distcc, dlcompat, dovecot, doxygen, dvd+rw-tools, dvipdfm, easytag,

elisp-manual, emacs-packages, eog2, ethereal, ettercap, feh,

festival-doc, fftw, fftw2, figlet, file-roller, fly, freetds, ftnchek,

fvwm2, g-wrap, g2, gaim, galeon, galway, gcalctool, gcc3, gd, gdchart,

giblib, gifsicle, gimp, gimp-wideangle, glib2, gnome-panel,

gnome2-control-center, gnucash, gnuplot, gopher, gpc, gqview-devel,

grace, grap, gsed, gtexinfo, gtk2, guile-fcgi, guile-gtk, guile-oops,

guile-pg, guile-slib, guile-www, guil...
[ message continues ]

We are pleased to announce that The NetBSD Foundation Inc. now is

classified as an Internal Revenue Code 501(c)(3) publicly-funded

non-profit organization.
Donations to the Foundation by US taxable entities are now fully

tax-deductible.

		=09

For more information about donations to The NetBSD Foundation:

	http://www.NetBSD.org/donations/
--

Luke Mewburn <lukem@NetBSD.org>, on behalf of

The Board of Directors of The NetBSD Foundation <board@NetBSD.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1
		 NetBSD Security Advisory 2009-011

		 =================================
Topic:		ISC DHCP server Denial of Service vulnerability
Version:	NetBSD-current:		affected prior to 2009-07-16

		NetBSD 5.0:		affected

		NetBSD 4.0.*:		affected

		NetBSD 4.0:		affected

		pkgsrc:			isc-dhcpd package prior to 3.1.1p1
Severity:	Denial of Service
Fixed:		NetBSD-current:		Jul 16, 2009

		NetBSD-5-0 branch:	Jul 17, 2009

		NetBSD-5 branch:	Jul 17, 2009

		NetBSD-4-0 branch:	Jul 17, 2009

		NetBSD-4 branch:	Jul 17, 2009

		pkgsrc 2009Q2:		isc-dhcpd-3.1.1p1 corrects this issue
Please note that NetBSD releases prior to 4.0 are no longer supported.

It is recommended that all users upgrade to a supported release.
Abstract

========
A reference counting error in dhcpd allows a remote attacker to cause

a daemon crash by submitting requests with the same client ID on

different interfaces served by the same daemon.
This vulnerability has been assigned CVE-2009-1892.
Technical Details

=================
A reference counting error in dhcpd allows a remote attacker to cause

a daemon crash by submitting requests with the same client ID on

different interfaces served by the same daemon.
This requires that client ID based configurations are mixed in the

configuration file with hardware address based configurations.
Solutions and Workarounds

=========================
In order to fix the vulnerability on your local machine, either

make sure that only client-id based statements or hardware ethernet

statements are used, or upgrade to a non-vulnerable version of

dhcpd.
The following instructions describe how to upgrade your dhcpd

binaries by updating your source tree and rebuilding and

installing a new version of dhcpd.
* NetBSD-current:
	Systems running NetBSD-current dated from before 2009-07-16

	should be upgraded to NetBSD-current dated 2009-07-17 or later.
	The following files/directories need to be updated from the

	n...
[ message continues ]

[For the full details on the changes mentioned below, please refer to

the tech-pkg mailing list - agc]
Summary of Changes to the Packages Collection in December 2004

==============================================================
By my calculations, at the end of December 2004, there were 5266

packages in the NetBSD Packages Collection, up from 5190 the previous

month, a rise of 76.
In December, there was a freeze on new functionality, and following

that, the pkgsrc-2004Q4 branch was made.  The freeze started on 6th

December, and lasted 2 weeks.  The old pkgsrc-2004Q3 branch has now

been deprecated, and continuing engineering now takes place on

pkgsrc-2004Q4. My thanks to all pkgsrc developers and users for

their help in making the new branch.
We also had new versions of kde, gnome, and an addition of a wiki.

The first annual Alistair Crooks "My Login on All Files" award goes to

Grant Beattie for his updates of perl5 packages.
As part of the infrastructure, we've modified the pkg_install utilities,

so that they use a large buffer for full path names, even on operating

systems which don't use the Berkeley FFS.
Notable additions include:  anthy, anthy-elisp, ap-rivet, ap2-chroot,

bglibs, bmp-musepack, easymenu, ec-fonts-mftraced, edcommon, elscreen,

epeg, exult, figlet-fonts, firefox-gtk2-bin-acroread, flac2mp3,

freepats, getopt, gimp-docs, glade2-gnome, gnumeric, gob2,

gtk2-chtheme, guile-lib, kde3-i18n-af, kde3-i18n-gl, lablgtk2, labltk,

libmusepack, mailgraph, mdd, mixminion, mldonkey-gui, msnre, netgroup,

ocaml-graphics, p5-Business-ISBN-Data, p5-Class-DBI-AbstractSearch,

p5-File-Tail, p5-IO-All, p5-IO-Multiplex, p5-Kwiki,

p5-Kwiki-Archive-Rcs, p5-Kwiki-BreadCrumbs, p5-Kwiki-Favorites,

p5-Kwiki-HtmlBlocks, p5-Kwiki-Icons-Gnome, p5-Kwiki-NewPage,

p5-Kwiki-ParagraphBlocks, p5-Kwiki-PreformattedBlocks,

p5-Kwiki-RecentChanges, p5-Kwiki-Revisions, p5-Kwiki-Scode,

p5-Kwiki-Search, p5-Kwiki-UserName, p5-Kwiki-UserPreferences,

p5-Math-Random, p5-Spiffy, p5-Spoon, p5-SQL-Abs...
[ message continues ]

Summary of Changes to the Packages Collection in March 2005

===========================================================
By my calculations, at the end of March 2005, there were 5377 packages

in the Packages Collection, up from 5331 the previous month, a rise of

46. However, after a recount spurred upon me by Andrew Brown, who

pointed out that I'd been counting the number of distinct packages,

but missing out packages where was more than one version in pkgsrc, like

apache. So I now declare the number of packages in pkgsrc to be 5439 at

the end of March 2005. Until the next recount, that is.
Notable additions include:  arka, byacc, DatLib, DatUtil,

dsniff-nox11, e16menuedit2, gaim-otr, ggiterm, gnome-backgrounds,

gnome-doc-utils, gnome-menus, gopchop, gtk2-engines-clearlooks,

gtkhtml36, gxemul, ja-sazanami-ttf, kde3-i18n-br, kde3-i18n-fy,

kde3-i18n-ga, kde3-i18n-lt, kde3-i18n-mk, kde3-i18n-se, kochi-ttf,

koffice-i18n-ja, koffice-i18n-lo, koffice-i18n-mt, koffice-i18n-nb,

koffice-i18n-nn, koffice-i18n-pt, koffice-i18n-pt_BR, koffice-i18n-sl,

koffice-i18n-sr, koffice-i18n-tg, koffice-i18n-th, koffice-i18n-tr,

koffice-i18n-ven, koffice-i18n-xh, koffice-i18n-zh_CN,

koffice-i18n-zh_TW, koffice-i18n-zu, lbdb, libggimisc, libgiigic,

libotr, lucy, MAMEDiff, mdf2iso, openttd, p5-Carp-Clan,

p5-Class-Autouse, p5-Class-MakeMethods, p5-ExtUtils-AutoInstall,

p5-Net-Dev-MIBLoadOrder, ROMBuild, ROMInfo, ruby-doc-stdlib,

ruby-imlib2, ruby-redcloth, ruby-xmlscan, ruby16-base, ruby16-digest,

ruby18-base, shapelib, socket++, sparsehash, sqlite3-tcl,

sylpheed-devel, systrace-policies, totem, totem-xine, turba, wdic,

wiliki, xentools20, ximian-connector, xmms-wma, and ZIPIdent.
Notable updates include:  aalib, aalib-x11, abiword, abiword-plugins,

amarok, anthy, ap-jk, arla, arts, asc, at-spi, atk, avr-gcc, avrdude,

bind, bittorrent, bittorrent-gui, blender, bluefish, bmp, bogofilter,

bomberclone, bug-buddy, bzflag, cairo, cfs, cgiirc, cgoban-java,

clamsmtp, cmp3, courier-authlib, courier-imap, couri...
[ message continues ]

Dear All,
A lot of new features were implemented in the NetBSD 5.0 release, and many

improvements were made in the areas of scheduling and threading.  Please

find the PDF document which shortly reviews new scheduling interfaces.
        "Thread scheduling and related interfaces in NetBSD 5.0"
        http://www.netbsd.org/~rmind/pub/netbsd_5_scheduling_apis.pdf
Thank you.
--

Mindaugas

Hello. I'd like to inform everyone about the formation of a new group in the Central California area. The groups name is Central California BSD Users Group (http://www.ccbug.org). All BSD users are welcome and I look forward to hearing from some of you! 
D. Adam Karim

Dear all,
The uplink for the NetBSD servers at ISC will see some maintenance

between 11:00-12:00 UTC tomorrow (Sun April 20th).
Public servers impacted will be www.NetBSD.org, mail.NetBSD.org,

ftp.NetBSD.org and anoncvs.NetBSD.org.

Apart from mail.NetBSD.org, all these servers have mirrors which will

stay available.
Best regards,

	spz

--

spz@serpens.de (S.P.Zeidler)

Announcing NetBSD 2.1
Introduction
   The  NetBSD  Project  is  pleased  to announce that release 2.1 of the

   NetBSD operating system is now available.
About NetBSD 2.1
   NetBSD  2.1  is  the first maintenance release of the netbsd-2 release

   branch.   This  release  provides  numerous  functional  enhancements,

   including support for many new devices, hundreds of bug fixes, patches

   and  updates  to  kernel subsystems, and many enhancements to the user

   environment.  In  addition, all of the security fixes and critical bug

   fixes from the NetBSD 2.0.3 update are included as well.
   Complete source and binaries for NetBSD 2.1 are available for download

   at  many  sites  around  the world. A list of download sites providing

   FTP,  AnonCVS,  SUP, and other services is provided at the end of this

   announcement;  the latest list of available download sites may also be

   found at:
     http://www.NetBSD.org/mirrors/
   We  encourage  users  who  wish  to  install via a CD-ROM ISO image to

   download via BitTorrent by using the torrent files supplied in the ISO

   image  area.  BitTorrent  has  recently  been  added  to  the  list of

   distribution  mechanisms  and  its  use is strongly encouraged to help

   keep bandwidth available.
About NetBSD
   The NetBSD operating system is a full-featured, open source, UNIX-like

   operating  system  descended  from  the  Berkeley Networking Release 2

   (Net/2),  4.4BSD-Lite,  and  4.4BSD-Lite2. NetBSD runs on 54 different

   system  architectures  featuring  17  machine  architectures across 17

   distinct  CPU  families,  and  is being ported to more. The NetBSD 2.1

   release  contains  complete  binary  releases for 48 different machine

   types.
   NetBSD  is  a  highly  integrated  system.  In  addition to its highly

   portable,  high  performance kernel, NetBSD features a complete set of

   user  utilities, compilers for several languages, the X Window System,

   firewall  software  and  numer...
[ message continues ]

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1
		 NetBSD Security Advisory 2006-010

		 =================================
Topic:		Sendmail race condition
Version:	NetBSD-current:	source prior to March 24, 2006

		NetBSD 3.0:	affected

		NetBSD 2.1:	affected

		NetBSD 2.0.*:	affected

		NetBSD 2.0:	affected

		NetBSD 1.6.*:	affected

		NetBSD 1.6:	affected

		pkgsrc:		sendmail packages prior to sendmail-8.13.5nb2

				sendmail packages prior to sendmail-8.12.11nb2
Severity:	Remote code execution with sendmail privileges
Fixed:		NetBSD-current:		March 24, 2006

		NetBSD-3-0 branch:	March 24, 2006

					   (3.0.1 will include the fix)

		NetBSD-3   branch:	March 24, 2006

		NetBSD-2-1 branch:	March 24, 2006

					   (2.1.1 will include the fix)

		NetBSD-2-0 branch:	March 24, 2006

					   (2.0.4 will include the fix)

		NetBSD-2   branch:	March 24, 2006

		pkgsrc:			sendmail-8.13.5nb2 corrects this issue

					sendmail-8.12.11nb2 corrects this issue
Abstract

========
Sendmail is vulnerable to a race condition in the handling of asynchronous

signals. This may allow a remote attacker to execute arbitrary code with

the privileges of the sendmail user.
This vulnerability has been assigned CVE reference CVE-2006-0058.
Technical Details

=================
Sendmail contains a race condition caused by the improper handling of

asynchronous signals. In particular, by forcing the SMTP server to have

an I/O timeout at exactly the correct instant, an attacker may be able

to execute arbitrary code with the privileges of the Sendmail process.
Solutions and Workarounds

=========================
Sendmail by default on NetBSD is bound to localhost (127.0.0.0, ::1) and

as such is not externally reachable.
However, it is recommended that all users of affected versions update their

sendmail to include the fix.
The following instructions describe how to upgrade your sendmail

binaries by updating your source tree and rebuilding and

installing a new version of sendmail.
* N...
[ message continues ]

NetBSD has been involved in the Google Summer of Code since its conception

in 2005. This year we were glad to once again have the oppertunity to

introduce six students to our operating system, to Open Source

software development and get them sponsored by Google to work on projects

defined by the NetBSD developers:
Julio M. Merino Vidal implemented an "Automated Testing Framework"

(mentored by Martin Husemann):
        http://www.netbsd.org/~jmmv/atf
Oliver Gould started to port the Solaris ZFS file system to NetBSD

(mentored by Dieter Baron)
        http://netbsd-soc.sourceforge.net/projects/zfs
Sumantra R. Kundu started to implement a "Framework For Enforcing QoS

Inside the NetBSD UVM" (mentored by William Stouder-Studenmund):
        http://crewman.uta.edu/~skundu/gsoc_2007.html
Thanks to Antti Kantee's project it is now possibe to run "Kernel File

Systems in Userspace" (mentored by William Stouder-Studenmund)
        http://www.netbsd.org/docs/puffs/rump.html
Jörg Sonnenberger improved the pkgsrc build system (mentored by Johnny

C. Lam):
	 http://netbsd-soc.sourceforge.net/projects/xpkgsrc
and Jáchym Holeček ported Hardware Monitoring and HAL to NetBSD

(mentored by Quentin Garnier):
	http://netbsd-soc.sourceforge.net/projects/hal
Please read the full press release for more details :
	http://netbsd.org/foundation/press/soc2007-summary.html
We thank Google for the opportunity to participate in the Summer of Code

2007. This helps to ensure the continual improvement and innovation of

NetBSD. Congratulations and many thanks to all involved students and

mentors for the great work. We hope that the students will continue

their commitment for NetBSD.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1
		 NetBSD Security Advisory 2006-014

		 =================================
Topic:		An audio subsystem race condition may crash the system
Version:	NetBSD-current:	source prior to April 19, 2006

		NetBSD 3.0:	source prior to April 19, 2006

		NetBSD 2.1:     not affected

		NetBSD 2.0.*:   not affected

		NetBSD 2.0:     not affected

		NetBSD 1.6.*:   not affected

		NetBSD 1.6:     not affected
Severity:	Any local user can crash the system
Fixed:		NetBSD-current:		April 19, 2006

		NetBSD-3-0 branch:	April 19, 2006

					(3.0.1 will include the fix)

		NetBSD-3   branch:	April 19, 2006
Abstract

========
A system crash can occur if a user changes the sample rate of an audio

device during playback.
Technical Details

=================
If the filter list is modified while audio_write() is running, a

kernel crash may occur. While the function is reading data from

userland, it does not check to see if the filter has been changed (via

audiosetinfo ioctl).
The audio_write() function reads data from userland in a loop, runs

any required filters (eg. rate conversion, changing encoding, etc) and

passes the data along to a circular audio buffer. The function

neglected to properly lock against the audiosetinfo() function.
Since this bug was introduced with the new audio filter framework in

NetBSD 3.0, prior releases are unaffected.
Solutions and Workarounds

=========================
For all NetBSD versions, you need to obtain fixed kernel sources,

rebuild and install the new kernel, and reboot the system.
The fixed source may be obtained from the NetBSD CVS repository.
The following instructions briefly summarise how to upgrade your

kernel.  In these instructions, replace:
  ARCH     with your architecture (from uname -m), and

  KERNCONF with the name of your kernel configuration file.
To update from CVS, re-build, and re-install the kernel:
        # cd src

        # cvs update -d -P sys/dev/audio.c

     ...
[ message continues ]

THE 1.6 RELEASE PROCESS

~~~~~~~~~~~~~~~~~~~~~~~~

We are pleased to announce that NetBSD 1.6 has branched and the release

engineering process has begun.
With 1.6, we have introduced a new method of producing release snapshots

that will substantially improve testing of the release binaries on multiple

platforms.  For the initial phase of the release process, we are producing

binaries for most platforms on a daily basis from a common codebase, using

the integrated cross-compilation system.
In order to help test the release on as diverse a collection of hardware as

possible, we encourage everyone capable of testing the release to download

snapshots frequently and report problems via "send-pr" or e-mail to

"current-users@netbsd.org".  Also, problems building the release branch

sources should be reported with relevant build environment information.
=====
WHERE TO GET 1.6 RELEASE SNAPSHOTS

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Daily snapshots of the release in progress, during the first "BETA" phase,

will be made available from:
    ftp://releng.netbsd.org/pub/NetBSD-daily/TIMESTAMP/MACHINE/
This is not "ftp.netbsd.org"; it is a separate machine so as not to overload

our FTP mirrors.  Because of the frequency of builds, we ask that no one

mirror specific portions of this FTP server, as the "NetBSD-daily" directory

will grow in size rather quickly.
The timestamp is a YYYYMMDDhhmm (year, month, day, hour, minute) timestamp,

which reflects the UTC time supplied to "cvs checkout" in order to build the

snapshot.  This way, it is possible to reproduce part or all of the source

tree directly from anoncvs.  A set of source tarballs will also be supplied

with each day's set of snapshots, in the subdirectory "source".
Note:  X11 binaries must still be built on native hardware.  Because of

this, X11 sets may not be available with a snapshot, or they may be the same

binaries carried forward from an earlier snapshot.
Snapshots of the single "RC" phase builds will be available from th...
[ message continues ]

The pkgsrc-2008Q3 Branch

========================
The pkgsrc developers are very proud to announce the new pkgsrc-2008Q3

release, which has support for more packages than previous releases.

As well as updated versions of many packages, the infrastructure of

pkgsrc itself has been improved for better platform and compiler

support.
At the same time, the pkgsrc-2008Q2 release has been deprecated, and

continuing engineering starts on the pkgsrc-2008Q3 release.
With more than ten years of pkgsrc development behind us, we would

like to take this opportunity to thank all of the people who have made

pkgsrc the most portable packaging system in the world - to all of the

users, developers and supporters a very large "Thank you" from all of

us.
Some highlights of the new pkgsrc-2008Q3 release are:
+ many more packages have been moved to install into a staging directory -

the DESTDIR work that Joerg Sonnenberger has done almost singlehandedly

+ many, many packages have been updated to newer versions, to take

advantage of fixes and improved functionality.  The following versions

of packages are included in the pkgsrc-2008Q3 release:
	+ apache-2.2.9

	+ firefox-2.0.0.17 and firefox-3.0.3

	+ gnome-2.22.3

	+ kde-3.5.10

	+ mysql-5.0.67

	+ openoffice-2.4.1nb3

	+ opera-9.52

	+ postgresql-8.3.3

	+ python-2.5.2nb4

	+ ruby-1.8.7.22

	+ samba-3.0.32

	+ seamonkey-1.1.12

	+ wireshark-1.0.3

	+ zope-3.3.1
+ other notable changes include

	+ Steve Bellovin has updated the claws email suite

	+ Stoned Elipot and Havard Eidnes have made it their personal

	  goal to incorporate all the CPAN packages into pkgsrc

	+ thanks to Matthias Drochner for keeping on top of all the

	  gnome packages, and to Mark Davies for our kde packages

	+ video support has been vastly enhanced-- NetBSD-current now

	  has support for some video devices, and Jared Mcneill has

	  added and extended quite a few packages for that (libv4l,

	  unicap, cheese, ucview, opal, ekiga, tvtime; extended

	  mplayer, gst-plugins...
[ message continues ]

Announcing NetBSD 1.5.3

                          =======================
   The NetBSD Project is pleased to announce that release 1.5.3 of the

   NetBSD operating system is now available.
   NetBSD 1.5.3 is a maintenance release for users of NetBSD 1.5.2,

   1.5.1, 1.5 and earlier releases, which provides the following

   updates relative to 1.5.2:
    * A number of security problems have been fixed

    * Some performance fixes have been incorporated

    * Improved device support in some existing drivers

    * Some new device drivers have been added
   Please note that a new major release of NetBSD, version 1.6, is

   currently in beta test and should be released within a few weeks.

   NetBSD 1.6 will be a substantial functional improvement over

   NetBSD 1.5.3.
   A complete list of changes are available in the CHANGES-1.5.3 file

   in top directory of the NetBSD 1.5.3 release tree. Also, included

   later in this announcement, is a list of the major changes added

   between NetBSD 1.5.2 and 1.5.3.
   Complete source and binaries for NetBSD 1.5.3 are available for

   download at many sites around the world. A list of download sites via

   FTP, AnonCVS, SUP, and other methods is provided at the end of this

   announcement; the latest list of available download sites may also be

   found at: http://www.netbsd.org/mirrors/
About NetBSD

------------
   The NetBSD operating system is a full-featured, open source, UNIX-like

   operating system descended from the Berkeley Networking Release 2

   (Net/2), 4.4BSD-Lite, and 4.4BSD-Lite2. NetBSD runs on 52 different

   system architectures featuring 17 distinct families of CPUs, and is

   being ported to more. The NetBSD 1.5.3 release contains complete

   binary releases for 20 different machine types.
   NetBSD is a highly integrated system. In addition to its highly

   portable, high performance kernel, NetBSD features a complete set of

   user utilities, compilers for several languages, th...
[ message continues ]

cvsweb.NetBSD.org will be offline on this weekend.
	start time:	Jul 30 (Sun), 00:00 GMT

	end time:	Jul 30 (Sun), 12:00 GMT
This is because the machine will be moved to a data center in this

period.  (Thanks IIJ -- Internet Initiative Japan -- for providing

the network connectivity.)  There will be no regular powercut

anymore after this move.
Please use one of the following mirrors during the period:
	cvsweb.de.NetBSD.org

	cvsweb2.jp.NetBSD.org
Sorry for the inconvenience.

--

soda

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1
		 NetBSD Security Advisory 2006-022

		 =================================
Topic:		BIND recursive query and SIG query processing
Version:	NetBSD-current:	source prior to September 05, 2006

		NetBSD 4.0_BETA:	affected

		NetBSD 3.1_RC3:		not affected

		NetBSD 3.0.*:		affected

		NetBSD 3.0:		affected

		NetBSD 2.1:		not affected

		NetBSD 2.0.*:		not affected

		NetBSD 2.0:		not affected

		pkgsrc:			bind-9.3.2nb1 and earlier
Severity:	Denial of service
Fixed:		NetBSD-current:		September 05, 2006

		NetBSD-4 branch:	September 06, 2006

			(4.0 will include the fix)

		NetBSD-3-0 branch:	September 06, 2006

			(3.0.2 will include the fix)

		NetBSD-3 branch:	September 06, 2006

			(3.1 will include the fix)

		pkgsrc:			bind-9.3.2nb2 corrects the issue
Abstract

========
Two denial of service vulnerabilities have been reported in bind which

can cause the name server daemon to crash.  The vulnerabilities relate

to the processing of SIG queries and recursive queries.
The SIG query processing issue has been assigned CVE reference CVE-2006-4095.

The recursive query issue has been assigned CVE reference CVE-2006-4096.
Technical Details

=================
Issue #1: SIG query processing
It is possible for an attacker to crash a name server by sending

certain SIG queries.  SIG queries are a part of the RFC 2535 DNSSEC

extensions.  The exploitation of this issue is dependent on the

configuration of the name server that receives the query:
* Recursive servers

Queries for SIG records will trigger an assertion failure if more

than one RRset is returned.
* Authoritative servers

Queries for SIG records will trigger and assertion failure where

there are multiple RRsets when the name server tries to construct

the response.
Issue #2: Recursive query handling
It is possible for an attacker to crash a name server by sending

enough recursive queries that the response to the query arrives

after all the clients look...
[ message continues ]

Metadata journaling support added to FFS

========================================
Simon Burge has just added metadata journaling to the FFS (fast file system)

code to NetBSD-current.
The journaling code, known as WAPBL - Write Ahead Physical Block Logging -

was originally written by Darrin B. Jewell for Wasabi Systems, Inc. [1],

and was contributed by Wasabi to the NetBSD community earlier this year.

Wasabi has been shipping WAPBL-enabled products since 2003.
Simon Burge, Greg Oster, Antti Kantee, and Andrew Doran spent quite some

time on integrating this code into NetBSD-current and enhancing it to allow

automatic creation of the journal log area inside existing filesystems to

ease conversion.
They also did some performance benchmarks and WAPBL performs very close to

soft-dependencies mounts, and only slightly slower than (unsafe) async

mounts. In case of a crash or unexpected power loss however, the journaled

file system will not need a lengthy file system check at boot time, but

instead the kernel will replay the log within seconds. This allows faster

crash recovery, less overall downtime and higher availability.
Converting an existing system to use the log feature is as easy as updating

(both kernel and userland), making sure the kernel option WAPBL is selected

(this is the default for GENERIC kernels now), adding a "log" option to

/etc/fstab and rebooting. Note that WAPBL is not compatible with

soft-dependencies, so please ensure that you first remove the "softdep"

option if present. See the wapbl(4) manual page for more information.
The WAPBL feature will be available in the upcoming NetBSD 5.0 release.
Many thanks to Wasabi Systems, Inc. for contributing this code, everyone that

helped to integrate it and especially Simon Burge for his work on the

in-filesystem journal.
Jared D. McNeill

The NetBSD Foundation
[1] http://www.wasabisystems.com/