Below is the list of advisories applicable to the NetBSD 1.5 release: A description and resolution procedure for a ftpd root escalation can be found in NetBSD Security Advisory NetBSD-SA2004-009 A description and resolution procedure for TCP protocol and implementation vulnerability can be found in NetBSD Security Advisory NetBSD-SA2004-006 A description and resolution procedure for Denial of service vulnerabilities in OpenSSL can be found in NetBSD Security Advisory NetBSD-SA2004-005 A description and resolution procedure for shmat reference counting bug can be found in NetBSD Security Advisory NetBSD-SA2004-004 A description and resolution procedure for OpenSSL 0.9.6 ASN.1 parser vulnerability can be found in NetBSD Security Advisory NetBSD-SA2004-003 A description and resolution procedure for DNS negative cache poisoning can be found in NetBSD Security Advisory NetBSD-SA2003-018 A description and resolution procedure for OpenSSL multiple vulnerability can be found in NetBSD Security Advisory NetBSD-SA2003-017 A description and resolution procedure for Sendmail - another prescan() bug CAN-2003-0694 can be found in NetBSD Security Advisory NetBSD-SA2003-016 A description and resolution procedure for Remote and local vulnerabilities in XFree86 font libraries can be found in NetBSD Security Advisory NetBSD-SA2003-015 A description and resolution procedure for Insufficient argument checking in sysctl(2) can be found in NetBSD Security Advisory NetBSD-SA2003-014 A description and resolution procedure for Kernel memory disclosure via ibcs2 can be found in NetBSD Security Advisory NetBSD-SA2003-013 A description and resolution procedure for Out of bounds memset(0) in sshd can be found in NetBSD Security Advisory NetBSD-SA2003-012 A description and resolution procedure for off-by-one error in realpath(3) can be found in NetBSD Security Advisory NetBSD-SA2003-011 A description and resolution procedure for remote panic in OSI networking code can be found in NetBSD Security Advisory NetBSD-SA2003-010 A description and resolution procedure for sendmail buffer overrun in prescan() address parser can be found in NetBSD Security Advisory SA2003-009 A description and resolution procedure for faulty length checks in xdrmem_getbytes can be found in NetBSD Security Advisory SA2003-008 A description and resolution procedure for (Another) Encryption weakness in OpenSSL code can be found in NetBSD Security Advisory SA2003-007 A description and resolution procedure for Cryptographic weaknesses in Kerberos v4 protocol can be found in NetBSD Security Advisory SA2003-006 A description and resolution procedure for RSA timing attack in OpenSSL code can be found in NetBSD Security Advisory SA2003-005 A description and resolution procedure for Format string vulnerability in zlib gzprintf() can be found in NetBSD Security Advisory SA2003-004 A description and resolution procedure for Buffer Overflow in file(1) can be found in NetBSD Security Advisory SA2003-003 A description and resolution procedure for Malformed header Sendmail vulnerability can be found in NetBSD Security Advisory SA2003-002 A description and resolution procedure for Encryption weakness in OpenSSL code can be found in NetBSD Security Advisory SA2003-001 A description and resolution procedure for Buffer overrun in talkd can be found in NetBSD Security Advisory SA2002-019 A description and resolution procedure for Multiple security isses with kfd daemon can be found in NetBSD Security Advisory SA2002-018 A description and resolution procedure for shutdown(s, SHUT_RD) on TCP socket does not work as intended can be found in NetBSD Security Advisory SA2002-017 A description and resolution procedure for Insufficient length check in ESP authentication data can be found in NetBSD Security Advisory SA2002-016 A description and resolution procedure for (another) buffer overrun in libc/libresolv DNS resolver can be found in NetBSD Security Advisory SA2002-015 A description and resolution procedure for fd_set overrun in mbone tools and pppd can be found in NetBSD Security Advisory SA2002-014 A description and resolution procedure for Bug in NFS server code allows remote denial of service can be found in NetBSD Security Advisory SA2002-013 A description and resolution procedure for buffer overrun in setlocale can be found in NetBSD Security Advisory SA2002-012 A description and resolution procedure for Sun RPC XDR decoder contains buffer overflow can be found in NetBSD Security Advisory SA2002-011 A description and resolution procedure for symlink race in pppd can be found in NetBSD Security Advisory SA2002-010 A description and resolution procedure for Multiple vulnerabilities in OpenSSL code can be found in NetBSD Security Advisory SA2002-009 A description and resolution procedure for buffer overrun in libc DNS resolver can be found in NetBSD Security Advisory SA2002-006 A description and resolution procedure for OpenSSH protocol version 2 challenge-response authentication can be found in NetBSD Security Advisory SA2002-005 A description and resolution procedure for Off-by-one error in openssh session can be found in NetBSD Security Advisory SA2002-004 A description and resolution procedure for gzip buffer overrun with long filename can be found in NetBSD Security Advisory SA2002-002 A description and resolution procedure for Close-on-exec, SUID and ptrace(2) can be found in NetBSD Security Advisory SA2002-001 A description and resolution procedure for Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon can be found in NetBSD Security Advisory SA2001-018 A description and resolution procedure for sendmail(8) incorrect command line argument check can be found in NetBSD Security Advisory SA2001-017 A description and resolution procedure for unsafe chdir usage in fts(3) can be found in NetBSD Security Advisory SA2001-016 A description and resolution procedure for Insufficient checking of lengths passed from userland to kernel can be found in NetBSD Security Advisory SA2001-015 A description and resolution procedure for dump(8) exposes 'tty' group can be found in NetBSD Security Advisory SA2001-014 A description and resolution procedure for an OpenSSL PRNG weakness can be found in NetBSD Security Advisory SA2001-013 A description and resolution procedure for a telnetd(8) options overflow can be found in NetBSD Security Advisory SA2001-012 A description and resolution procedure for an insufficient msg_controllen checking for sendmsg(2) can be found in NetBSD Security Advisory SA2001-011 A description and resolution procedure for a sshd(8) "cookies" file mishandling on X11 forwarding can be found in NetBSD Security Advisory SA2001-010 A description and resolution procedure for a race condition between sugid-exec and ptrace(2) can be found in NetBSD Security Advisory SA2001-009 A description and resolution procedure for a vulnerability that could lead to local root compromise on the sh3 platform can be found in NetBSD Security Advisory SA2001-008 A description and resolution procedure for a problem where the IP Filter packet filtering software may incorrectly pass packets can be found in NetBSD Security Advisory SA2001-007 A description and resolution procedure for a remote denial of service using bogus fragmented IPv4 packets can be found in NetBSD Security Advisory SA2001-006 A description and resolution procedure for a remote buffer overflow in the FTP daemon can be found in NetBSD Security Advisory SA2001-005 A description and a patch for a buffer overflow vulnerability in the NTP daemon can be found in NetBSD Security Advisory SA2001-004 A description of NetBSD's vulnerability position with regard to various implementations of the Secure Shell (SSH) daemon, either integrated releases or via pkgsrc, can be found in NetBSD Security Advisory SA2001-003. This advisory also describes a requirement for all users to ensure that the rnd(4) device is properly configured to prevent weak random number generation by integrated SSH and OpenSSL on NetBSD-1.5. A description, patch and workaround for a vulnerability that could lead to local root compromise on i386 systems with the USER_LDT kernel option enabled can be found in NetBSD Security Advisory SA2001-002 A description and resolution procedure for several security vulnerabilities in the BIND name server daemon can be found in NetBSD Security Advisory SA2001-001 A description and a patch for a security vulnerability in the FTP daemon can be found in NetBSD Security Advisory SA2000-018 A description and a patch for a security vulnerability in the kerberos libraries and telnet daemon can be found in NetBSD Security Advisory SA2000-017 A description, patch, and resolution procedure for rogue vulnerability can be found in NetBSD Security Advisory SA2002-021 A description and resolution procedure for buffer overrun in pic(1) can be found in NetBSD Security Advisory SA2002-022 A description and resolution procedure for sendmail smrsh vulnerability can be found in NetBSD Security Advisory SA2002-023 A description and resolution procedure for IPFilter FTP proxy vulnerability can be found in NetBSD Security Advisory SA2002-024 A description and resolution procedure for trek(6) buffer overrun can be found in NetBSD Security Advisory SA2002-025 A description and resolution procedure for buffer overrun in kadmind can be found in NetBSD Security Advisory SA2002-026 A description and resolution procedure for ftpd STAT output non-conformance can deceive firewall devices can be found in NetBSD Security Advisory SA2002-027 A description and resolution procedure for Buffer overrun in getnetbyname/getnetbyaddr can be found in NetBSD Security Advisory SA2002-028 A description and resolution procedure for named(8) multiple denial of service and remote execution of code can be found in NetBSD Security Advisory SA2002-029