src-test2/contrib, branch releng/6.3

src-test2/contrib, branch releng/6.3 FreeBSD source tree https://cgit-dev.freebsd.org/src-test2/atom?h=releng%2F6.3 2010-01-06T21:45:30Z Fix BIND named(8) cache poisoning with DNSSEC validation. 2010-01-06T21:45:30Z Simon L. B. Nielsen simon@FreeBSD.org 2010-01-06T21:45:30Z urn:sha1:1a707c0e67da562b02571106a36b14538caa6783 [SA-10:01] Fix ntpd mode 7 denial of service. [SA-10:02] Fix ZFS ZIL playback with insecure permissions. [SA-10:03] Various FreeBSD 8.0-RELEASE improvements. [EN-10:01] Security: FreeBSD-SA-10:01.bind Security: FreeBSD-SA-10:02.ntpd Security: FreeBSD-SA-10:03.zfs Errata: FreeBSD-EN-10:01.freebsd Approved by: so (simon) Fix BIND named(8) dynamic update message remote DoS. 2009-07-29T00:14:14Z Simon L. B. Nielsen simon@FreeBSD.org 2009-07-29T00:14:14Z urn:sha1:e8c0497d6897110bc83bda93cc1eb51d54d45dc1 Obtained from: ISC Security: FreeBSD-SA-09:12.bind Security: CVE-2009-0696 Approved by: so (simon) Prevent integer overflow in direct pipe write code from circumventing 2009-06-10T10:31:11Z Colin Percival cperciva@FreeBSD.org 2009-06-10T10:31:11Z urn:sha1:57bbdcd90887aa47cd123bf1200be30ae299356d virtual-to-physical page lookups. [09:09] Add missing permissions check for SIOCSIFINFO_IN6 ioctl. [09:10] Fix buffer overflow in "autokey" negotiation in ntpd(8). [09:11] Approved by: so (cperciva) Approved by: re (not really, but SVN wants this...) Security: FreeBSD-SA-09:09.pipe Security: FreeBSD-SA-09:10.ipv6 Security: FreeBSD-SA-09:11.ntpd Correct ntpd(8) cryptographic signature bypass [SA-09:04]. 2009-01-13T21:19:27Z Simon L. B. Nielsen simon@FreeBSD.org 2009-01-13T21:19:27Z urn:sha1:a554d42eab4d4e7f72c1718676f2d6183820a607 Correct BIND DNSSEC incorrect checks for malformed signatures [SA-09:04]. Security: FreeBSD-SA-09:03.ntpd Security: FreeBSD-SA-09:04.bind Obtained from: ISC [SA-09:04] Approved by: so (simon) Prevent cross-site forgery attacks on lukemftpd(8) due to splitting 2009-01-07T20:17:55Z Simon L. B. Nielsen simon@FreeBSD.org 2009-01-07T20:17:55Z urn:sha1:58c30e69b0f01372bee2b4cdd158d7f0629b23b2 long commands into multiple requests. [09:01] Fix incorrect OpenSSL checks for malformed signatures due to invalid check of return value from EVP_VerifyFinal(), DSA_verify, and DSA_do_verify. [09:02] Security: FreeBSD-SA-09:01.lukemftpd Security: FreeBSD-SA-09:02.openssl Obtained from: NetBSD [SA-09:01] Obtained from: OpenSSL Project [SA-09:02] Approved by: so (simon) Improve randomization in BIND to prevent response spoofing. 2008-07-13T18:42:38Z Colin Percival cperciva@FreeBSD.org 2008-07-13T18:42:38Z urn:sha1:8c5bc4cffdbd632621dc11ca13d7e83af9349a04 Security: FreeBSD-SA-08:06.bind Approved by: so (cperciva) Thanks to: remko, csjp No thanks to: bronchitis MFC: rev 1.4: forward compatability with cvs-1.12 repository 2008-01-07T09:08:53Z Peter Wemm peter@FreeBSD.org 2008-01-07T09:08:53Z urn:sha1:a174ff12b1970a4c6e160dbae933995cfadbe289 Approved by: re (kensmith) MFC: less v416. 2007-12-04T22:41:44Z Xin LI delphij@FreeBSD.org 2007-12-04T22:41:44Z urn:sha1:8f9668f0654aced06c17c03efbe97f57b2bf0e12 Approved by: re (kensmith) MFC: fix situation where GDB gives incorrect backtraces when a signal 2007-11-28T16:55:39Z David E. O'Brien obrien@FreeBSD.org 2007-11-28T16:55:39Z urn:sha1:a793975d0d6d732d400422ca74dc5c6664fe837d handler is in the call chain. Approved by: re(kensmith) This commit was manufactured by cvs2svn to create branch 'RELENG_6_3'. 2007-11-24T19:45:58Z cvs2svn cvs2svn@FreeBSD.org 2007-11-24T19:45:58Z urn:sha1:0ef2db398f8ee2f0433eb121c3590cb4288b9a04