src-test2, branch releng/5.5 FreeBSD source tree https://cgit-dev.freebsd.org/src-test2/atom?h=releng%2F5.5 2008-04-17T00:00:54Z Fix logic error in sshd(8) concerning the handling of failed 2008-04-17T00:00:54Z Colin Percival cperciva@FreeBSD.org 2008-04-17T00:00:54Z urn:sha1:d4c364b3dcf6dfe4e20c70d31912aad7e6219c14 attempts to bind ports for X11 forwarding. Security: FreeBSD-SA-08:05.openssh Approved by: so (cperciva) Fix sendfile(2) write-only file permission bypass. [08:03.sendfile] 2008-02-14T11:50:28Z Simon L. B. Nielsen simon@FreeBSD.org 2008-02-14T11:50:28Z urn:sha1:709dbc33b14011a5969835f1d020adc93138f0b5 Fix IPsec null pointer dereference panic. [SA-08:04.ipsec] Security: FreeBSD-SA-08:03.sendfile Security: FreeBSD-SA-08:04.ipsec Approved by: so (simon) Fix date of last advisory -- January 14th, not January 18th. 2008-01-15T23:36:53Z Colin Percival cperciva@FreeBSD.org 2008-01-15T23:36:53Z urn:sha1:fbf69f116f9ce548a341e2c8f4415df5356bbd48 Approved by: so (cperciva) Fix issues which allow snooping on ptys. 2008-01-14T22:57:19Z Colin Percival cperciva@FreeBSD.org 2008-01-14T22:57:19Z urn:sha1:22bd81bf62fb9d5b405889ebad805c2d462fa3d2 Security: FreeBSD-SA-08:01.pty Approved by: so (cperciva) Correct a random value disclosure in random(4). [07:09] 2007-11-29T16:09:26Z Simon L. B. Nielsen simon@FreeBSD.org 2007-11-29T16:09:26Z urn:sha1:0ace3a498843e57dbcd8b6bdf60930f84624dc4e Correct a gtar directory traversal vulnerability. [07:10] Security: FreeBSD-SA-07:09.random Security: FreeBSD-SA-07:10.gtar Approved by: so (simon) Correct a buffer overflow in OpenSSL SSL_get_shared_ciphers(). 2007-10-03T21:42:32Z Simon L. B. Nielsen simon@FreeBSD.org 2007-10-03T21:42:32Z urn:sha1:36cf2a86b4cd33c821387edc40f82254724a0851 Security: FreeBSD-SA-07:08.openssl Approved by: so (simon) Correct a bug in the patch for FreeBSD-SA-07:01.jail which prevented 2007-08-01T20:48:19Z Simon L. B. Nielsen simon@FreeBSD.org 2007-08-01T20:48:19Z urn:sha1:6c74b7e589a31e23b44a1b1611bd0fcf91c9f887 jails with custom fstab's from starting due to use of incorrect variable. [1] Correct buffer overflow in tcpdump(1). [SA-07:06] Correct predictable query ids in named(8). [SA-07:07] Reported by: Joel Hatton <joel@auscert.org.au> [1] Security: FreeBSD-SA-07:06.tcpdump Security: FreeBSD-SA-07:07.bind Approved by: so (simon) Correct multiple security issues in how libarchive handles corrupt 2007-07-12T15:01:56Z Colin Percival cperciva@FreeBSD.org 2007-07-12T15:01:56Z urn:sha1:cdf37dd79289f26dbd48029c2717e5cffc3f600b tar archives, including a potentially exploitable buffer overflow. Approved by: so (cperciva) Reviewed by: kientzle Security: FreeBSD-SA-07:05.libarchive Fix buffer overflow in libmagic(3). 2007-05-23T16:13:20Z Colin Percival cperciva@FreeBSD.org 2007-05-23T16:13:20Z urn:sha1:723930a26af17f1cef8b639233dc7e6c5318bbd3 Security: FreeBSD-SA-07:04.file Approved by: so (cperciva) Disable processing of IPv6 type 0 Routing Headers. This behaviour 2007-04-26T23:42:23Z Colin Percival cperciva@FreeBSD.org 2007-04-26T23:42:23Z urn:sha1:f64f1bc808da2132080f9440a01098352c860dfb can be changed via the (newly added) net.inet6.ip6.rthdr0_allowed sysctl. Security: FreeBSD-SA-07:03.ipv6 Approved by: so (cperciva)