Skip to main content

New version of MidnightBSD available.


MidnightBSD 0.6 was released.

"MidnightBSD 0.6-RELEASE. This release is primarily a security fix and mport package tool release. Security: OpenSSL - the receipt of a specifically crafted DTLS handshake message may cause OpenSSL to consume large amounts of memory; the receipt of a specifically crafted DTLS packet could cause OpenSSL to leak memory; a flaw in OBJ_obj2txt may cause pretty printing functions such as X509_name_oneline, X509_name_print_ex et al. to leak some information from the stack; OpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject to a denial of service attack; TCP SYN - when a segment with the SYN flag for an already existing connection arrives, the TCP stack tears down the connection, bypassing a check that the sequence number in the segment is in the expected window; fix several security vulnerabilities in routed, rtsold, and namei with respect to Capsicum sandboxes looking up nonexistent path names and leaking memory...."
MidnightBSD is a FreeBSD-derived operating system. A critical goal of the project is to create an easy-to-use desktop environment with graphical ports management, and system configuration using GNUstep. The vast majority of the operating system will maintain a BSD license. MidnightBSD was forked from FreeBSD 6.1 beta.

Popular Posts