You need to read the FAQ : http://cvs.openbsd.org/faq/faq10.html#Patches http://cvs.openbsd.org/faq/upgrade40.html
Read the ENTIRE FAQ, because it's there for a GOOD reason. Marius On 3/16/07, Karel Kulhavy <[EMAIL PROTECTED]> wrote:
On Fri, Mar 16, 2007 at 09:54:47AM +0100, Vincent GROSS wrote: > On 3/16/07, Karel Kulhavy <[EMAIL PROTECTED]> wrote: > >http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1703 > >says: > >Vulnerable Packages > >OpenBSD 4.1 prior to Feb. 26th, 2006. > >OpenBSD 4.0 Current > >OpenBSD 4.0 Stable > >[...] > > > >OpenBSD-current, 4.1, 4.0 and 3.9 have the fix incorporated in their source > >code tree and kernel binaries for those versions and the upcoming version > >4.1 > >include the fix. > > > >I have OpenBSD 4.0. Is my system vulnerable or not? > > if you're following -current and you rebuilt it after February 28, > you're fine (not sure for this one) > if you're following -stable and you rebuilt it after March 7, you're fine. > otherwise, you're toasted. I am not following anything - just installed OpenBSD 4.0 from a CD. What should I follow, then? In other operating system the concept of upgrading is straightforward - Windows ask you and you press OK, in Gentoo Linux you type a magic sequence of magic commands and your system is up to date. But in OpenBSD it seems that the versions are not a sequence, but a tree with a lot of one way streets and that's what confuses me. CL<