Colleagues,
Thanks,
-Jim
- Is it possible to MANUALLY update a couple of binaries on a running system with binaries from FreeBSD's repository in order to patch a couple known security vulnerabilities?
- Issues are:
- I have a FreeNAS appliance based upon FreeBSD 8.3-p6 on a CLOSED network.
- I would like to MANUALLY apply a BINARY upgrade/patch.
- I cannot use the make or freebsd-update since they're not on the target system.
- Binaries I want to upgrade are:
- ntpd from version 4.2.4p5 to 4.2.4p7 due to CVE-2009-1252 (probably minor change)
- bzip2 from version 1.0.5 to 1.0.6 due to CVE-2010-0405 (probably minor change)
- If possible:
- Where can I get the updates?
- How can I check the metadata associated with the new binaries packages?
- Do I need to check dependency integrity manually?
- Can root just copy over the old binary to the new binary?
Thanks,
-Jim