From owner-doc-jp@jp.freebsd.org  Wed Aug 15 17:01:22 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id RAA03071;
	Wed, 15 Aug 2001 17:01:22 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from eos.ocn.ne.jp (eos.ocn.ne.jp [210.190.142.171])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id RAA03064
	for <doc-jp@jp.freebsd.org>; Wed, 15 Aug 2001 17:01:22 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
Received: from mail.hrslab.yi.org (p0212-ip01funabasi.chiba.ocn.ne.jp [211.123.225.212])
	by eos.ocn.ne.jp (8.9.1a/OCN/) with ESMTP id RAA27135
	for <doc-jp@jp.freebsd.org>; Wed, 15 Aug 2001 17:01:20 +0900 (JST)
Received: from localhost (alph.hrslab.yi.org [192.168.0.10])
	by mail.hrslab.yi.org (8.9.3/3.7W/DomainMaster) with ESMTP id RAA23169
	for <doc-jp@jp.freebsd.org>; Wed, 15 Aug 2001 17:00:53 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
Date: Wed, 15 Aug 2001 17:00:25 +0900 (JST)
Message-Id: <20010815.170025.39148669.hrs@eos.ocn.ne.jp>
To: doc-jp@jp.freebsd.org
From: Hiroki Sato <hrs@eos.ocn.ne.jp>
In-Reply-To: <20010812.225405.74755960.y-koga@jp.FreeBSD.org>
References: <20010809014423.29E6.ASATOH@pc.mycom.co.jp>
	<20010812.225405.74755960.y-koga@jp.FreeBSD.org>
X-Mailer: Mew version 1.95b101 on Emacs 20.7 / Mule 4.0 (HANANOEN)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: doc-jp 8339
Subject: [doc-jp 8339] Re: FreeBSD-SA-01:52
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: hrs@eos.ocn.ne.jp

$B:4F#!wEl5~M}2JBg3X$G$9!#(B

Koga Youichirou <y-koga@jp.freebsd.org> wrote
  in <20010812.225405.74755960.y-koga@jp.FreeBSD.org>:

y-koga> $B$3$l$^$G$N(B FreeBSD-SA $B$H9g$o$;$k$?$a$K!"(B
y-koga> http://www.ed.noda.sut.ac.jp/~j7301620/FreeBSD/doc-jp/announce-jp/FreeBSD-SA/freebsd-sa.txt
y-koga> $B$b;29M$K$5$l$k$H$h$$$G$7$g$&!#",$K=q$$$F$"$kJ,$O!"$3$3$G$O?($l$^$;$s(B
y-koga> ($B%;%/%7%g%s%?%$%H%k$J$I(B)$B!#(B

 $B$3$N$X$s$O==J,5DO@$5$l$F$$$J$+$C$?$H$3$m$G$b$"$j$^$9$7!"(B
 $BDj7?E*$JItJ,$b2DG=$J8B$jE}0l$7$?$$$N$G!"(B
 $B$3$3$i$G0l$D$K7h$a$^$7$g$&!#(B

 $B$H$j$"$($:0c$$$,L\N)$D0J2<$NE@$K$D$$$F$"$2$F$_$^$9$N$G(B
 $B0U8+$r$/$@$5$$!#(B

 1) $B%X%C%@(B

   - $B%H%T%C%/Lu=P$NM-L5(B

     * $B:4F#!wM}2JBg(B:      $B$J$7(B
     * $B$O$i$@$5$s(B:        $B$"$j(B
     * $B$5$H$&!w(BMYCOM$B$5$s(B: $B$"$j(B

   $BLu=P$7$J$$!"$H$$$&%9%?%$%k$r$H$k@Q6KE*$JM}M3$O$"$j$^$;$s!#(B
   $B$?$@8D?ME*$J9%$_$G!"Lu=P$9$k$J$i86J8$H$NBP1~$,(B
   $B$H$j$d$9$$$h$&$K86J8$r>C$5$J$$J}$,NI$$$H9M$($F$$$^$9!#(B

    # $B$^$"(B SA $BHV9f$GBP1~$O<h$l$k$N$G(B
    # $B<B:]$K:$$k$b$N$G$O$"$j$^$;$s$1$I!#(B


 2) $B%;%/%7%g%s%?%$%H%k(B

   - workaround/solution $B$NLu(B

     * $B:4F#!wM}2JBg(B:      $B2sHrJ}K!(B/$B2r7h:v(B
     * $B$5$H$&!w(BMYCOM$B$5$s(B: $B;CDjBP1~(B/$B2r7h:v(B

   $BC1=c$KJ,N`$9$l$P(B

    workaround: $B=$@5%Q%C%A$r;H$o$J$$$G!"(B($B$?$H$($P@_Dj$NJQ99Ey$G(B)
                $BLdBj$rI=LL2=$5$;$J$$$h$&$K$9$kJ}K!(B
    solution: $B=$@5%Q%C%A$r;H$C$FLdBj$r40A4$K$J$/$9J}K!(B

   $B$H$$$&J,$1J}$G$7$+$"$j$^$;$s$,!"(B
   $B<+J,$G$b0c$$$,J,$+$j$E$i$$$H;W$C$F$$$^$9!#(B

   $B:4F#!wM}2JBg%9%?%$%k$G86J8$r;D$7$F$$$k$N$O!"Lu$G$O$3$N$X$s$N%K%e%"%s%9$r(B
   $BEA$($i$l$J$$$@$m$&$H$$$&IT0B$,$"$C$?$+$i$@$C$?$j$7$^$9!#(B

 3) $BDj7?ItJ,(B ($B$N$&$AD9$$$b$N(B)

  $B<!$OKh2sKh2sF1$8J8LL$,7+$jJV$5$l$kItJ,$G$9!#(B

  $B;29M$^$G$K:4F#!wM}2JBg(B $BLu$rIU$1$F$*$-$^$9$,!"(B
  $B$O$i$@$5$sLu!"$5$H$&!w(BMYCOM$B$5$sLu$OEvA3$J$,$i0[$J$C$F$$$^$9!#(B
 
  $B$=$3$G!"E}0l$9$k$K$"$?$C$FNI$5$=$&(B/$B$^$:$=$&$JItJ,$r;XE&$7$F$$$?$@$1$k$H(B
  $B$"$j$,$?$$$G$9!#2~A10F$r(B merge $B$7$F!";H$$$^$o$7$G$-$k$b$N$K$7$^$7$g$&!#(B

 | The XXX port is not installed by default, nor is it "part of FreeBSD"
 | as such: it is part of the FreeBSD ports collection, which contains
 | over NNNNN third-party applications in a ready-to-install format.  The
 | ports collections shipped with FreeBSD x.x and y.y contain this
 | problem since it was discovered after the releases.  The ports
 | collection that shipped with FreeBSD z.z is not vulnerable since this
 | problem was corrected prior to the release.
 | 
 | FreeBSD makes no claim about the security of these third-party
 | applications, although an effort is underway to provide a security
 | audit of the most security-critical ports.

 <$B:4F#!wM}2JBg(B $BLu(B>

 XXX $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B,
 $B!V(BFreeBSD $B%7%9%F%`$N0lIt!W$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B.
 $B$=$l$i$O(B NNNNN $B$r1[$($k%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$,$9$0$K(B
 $B%$%s%9%H!<%k$G$-$k7A$G<}$a$i$l$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B.
 $B%j%j!<%98e$KLdBj$,8+$D$+$C$?$?$a(B FreeBSD x.x $B$*$h$S(B y.y $B$H$H$b$K(B
 $B=P2Y$5$l$?(B Ports Collection $B$O$3$NLdBj$r4^$s$G$$$^$9$,(B, 
 FreeBSD z.z $B$N%j%j!<%9A0$K$3$NLdBj$O=$@5$5$l$^$7$?(B.

 FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
 $BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports Collection $B$K(B
 $BF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j%1!<%7%g%s$,(B
 $B0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B).  $B$?$@$7(B, $B%;%-%e%j%F%#LdBj$KBP$7$F(B
 $BBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::$rDs6!$9$Y$/(B,
 $B8=:_EXNOCf$G$9(B.

 | 3) FreeBSD 4.3-RELEASE systems:
 | 
 | An experimental upgrade package is available for users who wish to
 | provide testing and feedback on the binary upgrade process.  This
 | package may be installed on FreeBSD 4.3-RELEASE systems only, and is
 | intended for use on systems for which source patching is not practical
 | or convenient. 
 | 
 | If you use the upgrade package, feedback (positive or negative) to
 | security-officer@FreeBSD.org is requested so we can improve the
 | process for future advisories. 
 | 
 | During the installation procedure, backup copies are made of the files
 | which are replaced by the package.  These backup copies will be
 | reinstalled if the package is removed, reverting the system to a
 | pre-patched state.

 <$B:4F#!wM}2JBg(B $BLu(B>

 3) FreeBSD 4.3-RELEASE $B%7%9%F%`$N>l9g(B:

 $B<B83E*$J$b$N$G$9$,(B, $B%"%C%W%0%l!<%I%Q%C%1!<%8$,MQ0U$5$l$F$$$^$9(B.  
 $B$3$l$O%P%$%J%j%"%C%W%0%l!<%I5!G=$N;n83$*$h$S(B, $B$=$l$KBP$9$k0U8+$r(B
 $BDs6!$7$F$$$?$@$1$k%f!<%68~$1$N$b$N$G$9(B.  $B$3$N%Q%C%1!<%8$O(B
 FreeBSD 4.3-RELEASE $B%7%9%F%`$G$N$_%$%s%9%H!<%k2DG=$G(B, $B%=!<%9$X(B
 $B=$@5%Q%C%A$rE,MQ$9$k$3$H$,8=<BE*$G$J$+$C$?$j(B, $B$=$&$9$k$3$H$,(B
 $B$U$5$o$7$/$J$$$H9M$($i$l$k%7%9%F%`$G$NMxMQ$r9MN8$7$?$b$N$G$9(B.

 $B$3$N%"%C%W%0%l!<%I%Q%C%1!<%8$rMxMQ$9$k>l9g$O(B, $B>-Mh$N%;%-%e%j%F%#4+9p$r(B
 $B$h$jNI$$$b$N$K$9$k$?$a(B, ($B9NDjE*!&H]DjE*$N$$$:$l$G$"$C$F$b(B)
 security-officer@FreeBSD.org $B$^$G$40U8+$r$*4s$;$/$@$5$$(B.  

 $B%$%s%9%H!<%k<j=g$r?J$a$k4V(B, $B%"%C%W%0%l!<%I%Q%C%1!<%8$,CV$-49$($k(B
 $B%U%!%$%k$K$O%P%C%/%"%C%W%3%T!<$,:n@.$5$l$^$9(B.  $B$3$N%P%C%/%"%C%W%3%T!<$O(B
 $B%"%C%W%0%l!<%I%Q%C%1!<%8$r:o=|$9$k$H:F%$%s%9%H!<%k$5$l(B, $B%7%9%F%`$O(B
 $B=$@5%Q%C%A$rE,MQ$9$kA0$N>uBV$KLa$j$^$9(B.

--
| $B:4F#(B $B9-@8!wEl5~M}2JBg3X(B <hrs@eos.ocn.ne.jp>
|                         <hrs@FreeBSD.org> (FreeBSD Project)
