NetBSD 6.0.1 delivers security and stability fixes
Following the release of NetBSD 6.0 in October, the developers of the BSD-based operating system distribution have released a bug fix update; this closes several security holes and is therefore deemed important by the developers. In addition to patching security holes, NetBSD 6.0.1 also fixes several minor kernel problems, an issue with the event system that could lead to a system crash, networking issues and a problem with smbfs not working on big-endian systems.
NetBSD 6.0.1 fixes four security problems, three of which concern Denial of Service (DoS) problems that could be exploited with specially crafted XML files. The denial of service attacks exploit a memory leak and hash collisions in the xmlparse program and can cause excessive file descriptor consumption in the readfilemap component of the kernel. Potential crashes of the BIND DNS server with DNS64 enabled have also been fixed.
More information on the changes in NetBSD 6.0.1 can be found in the change log. The BSD-based and licensed operating system is available for numerous platforms from any of the project's mirrors. Documentation is also available.