Summary of Problem Reports Assigned to "security-officer"

Automatically generated on 22 Sep 2017 00:00:00 GMT

Severity
Categorycriticalseriousnon-criticalDescription
security 710Security bugs

Sorted by Category, Severity, and Priority.


[NetBSD home] [Summary index] [Search PRs] [Send a PR]


Category: security

Severity: serious

security/41942
[open high priority sw-bug] telnetd(8) allows direct root login on tty marked as insecure
security/48702
[open high priority sw-bug] early entropy does not get loaded
security/51115
[open high priority change-request] release sum file signatures should be in release dirs
security/38276
[open medium priority sw-bug] openpam treats sufficient as optional in "prelim" phase making pam_ldap fail
security/43160
[open medium priority sw-bug] nss_ldap
security/50026
[open medium priority sw-bug] buffer overflow ipfilter
security/51973
[open medium priority sw-bug] openssh processes content of AuthorizedKeysCommand file instead of it's output

Severity: non-critical

security/40576
[open medium priority sw-bug] veriexecgen sets no explicit access mode for some files and the default behaviour of veriexec in face of this cause errors
security/42119
[open medium priority change-request] ippool startup script missing
security/47630
[open medium priority sw-bug] ssh_host_ecdsa_key is not in /etc/mtree/special
security/49225
[open medium priority change-request] Security Advisories terminology could be enhanced
security/6594
[open low priority sw-bug] the default "nobody" credentials (32767:9999) do not match mountd's default (-2:-2)
security/11146
[analyzed low priority sw-bug] built-in TCP wrapper in inetd does not protect UDP or internal services
security/23756
[open low priority change-request] /dev/random should block on writes if the entropy pool is full
security/34773
[open low priority change-request] Patch that adds functionality to veriexecgen
security/51177
[open low priority sw-bug] Kerberos still supported?
security/51682
[open low priority support] Remote un-authenticated denial of service

[NetBSD home] [Page top] [Summary index] [Search PRs] [Send a PR]