hubertf's NetBSD Blog
Send interesting links to hubert at feyrer dot de!
[20121227] NetBSD 6.0.1 security/bugfix released
The NetBSD Project is pleased to announce NetBSD 6.0.1, the first security/bugfix update of the NetBSD 6.0 release branch. It represents a selected subset of fixes deemed important for security or stability reasons.

To save you from searching, here is the list of relevant changes from the release notes:

Security Fixes

  • expat: Fix CVE-2012-1147, CVE-2012-1148 and CVE-2012-0876.
  • BIND: Address CVE-2012-5688: Named could die on specific queries with dns64 enabled.

General kernel

  • posix_spawn(): Fix processes with attributes.
  • Resolve races between vget() and vrele() resulting in vget() returning dead vnodes.
  • Prevent crash when unsupported fd's are used with kevent.


  • Fix "atomic fragments" for IPv6.
  • ipf: Fix alignment issues in ipmon. (PR#47101)
  • npf: handle delayed checksums in the network stack. (PR#47235)

File systems

  • smbfs: Make smbfs actually work on big-endian ports.


  • ciss(4): don't try to handle sensors if there aren't any.


  • x86 (i386, amd64):
    • Work around a possible gcc bug generating bad assembler code. (PR#45673)
    • Disable C1E on AMD K8 CPUs, to prevent freeze during boot.
  • xen:
    • Prevent a memory corruption issue that locks up a Xen DomU, and can potentially cause file system corruption. (PR#47056, PR#47057)
    • Fix: Xen Dom0 NetBSD kernel could crash by adding duplicate xenwatches.

Userland fixes

  • Update to tzdata2012j.
  • cdb: don't refuse to open databases without entries or keys.
  • Address graphics corruption in recent Cairo, manifested most commonly by certain rendered text sections appearing as solid rectangular blocks of color.
The complete list of changes can be found in the CHANGES-6.0.1 file in the top level directory of the NetBSD 6.0.1 release tree.

Complete source and binaries for NetBSD 6.0.1 are available for download at many sites around the world. A list of download sites providing FTP, AnonCVS, SUP, and other services may be found at

P.S.: Don't miss out on the end of NetBSD 2012 fundraise!

[Tags: , ]

Disclaimer: All opinion expressed here is purely my own. No responsibility is taken for anything.

Access count: 34863500
Copyright (c) Hubert Feyrer