src-test2/contrib, branch stable/6

src-test2/contrib, branch stable/6 FreeBSD source tree https://cgit-dev.freebsd.org/src-test2/atom?h=stable%2F6 2012-01-27T18:21:40Z MFC r228843: 2012-01-27T18:21:40Z Ed Maste emaste@FreeBSD.org 2012-01-27T18:21:40Z urn:sha1:c2eb82527919aca947c5e12f503c24fd0cf292e5 Fix a buffer overflow in telnetd. [11:08] Fix an integer overflow in RLE length parsing when decompressing 2010-09-20T14:58:08Z Colin Percival cperciva@FreeBSD.org 2010-09-20T14:58:08Z urn:sha1:7139240c074f0e8dbc5baf23fe15f1ecd51b5091 corrupt bzip2 data. Approved by: so (cperciva) Security: FreeBSD-SA-10:08.bzip2 Change the current working directory to be inside the jail created by 2010-05-27T03:15:04Z Colin Percival cperciva@FreeBSD.org 2010-05-27T03:15:04Z urn:sha1:a63d3059f5e1902fed3a2cc8bc46c82d566ac8f2 the jail(8) command. [10:04] Fix a one-NUL-byte buffer overflow in libopie. [10:05] Correctly sanity-check a buffer length in nfs mount. [10:06] Approved by: so (cperciva) Approved by: re (kensmith) Security: FreeBSD-SA-10:04.jail Security: FreeBSD-SA-10:05.opie Security: FreeBSD-SA-10:06.nfsclient MFC r205654: 2010-03-25T20:07:30Z Xin LI delphij@FreeBSD.org 2010-03-25T20:07:30Z urn:sha1:20b236dd6b7deb9121581025e17fb470069db255 The rmt client in GNU cpio could have a heap overflow when a malicious remote tape service returns deliberately crafted packets containing more data than requested. Fix this by checking the returned amount of data and bail out when it is more than what we requested. PR: gnu/145010 Submitted by: naddy Reviewed by: imp Security: CVE-2010-0624 MFC: Update FreeBSD information 2010-01-31T19:36:59Z Gregory Neil Shapiro gshapiro@FreeBSD.org 2010-01-31T19:36:59Z urn:sha1:c7fd99c41e380ef28e7776f8b2faa34c37dea175 MFC: Merge sendmail 8.14.4 2010-01-31T19:30:47Z Gregory Neil Shapiro gshapiro@FreeBSD.org 2010-01-31T19:30:47Z urn:sha1:1bc8ef0a9016cb83600cd25a15506083d439d5cd MFC: Merge from vendor dist: Bring in a change already in the sendmail 2010-01-31T19:29:51Z Gregory Neil Shapiro gshapiro@FreeBSD.org 2010-01-31T19:29:51Z urn:sha1:1db0b2ed20801d7e68a583a366b0b01229da75cf repository that will allow sendmail to be built with the c99 compiler. Fix BIND named(8) cache poisoning with DNSSEC validation. 2010-01-06T21:45:30Z Simon L. B. Nielsen simon@FreeBSD.org 2010-01-06T21:45:30Z urn:sha1:a30968d9515f7add6d37283c23a33dc48118d540 [SA-10:01] Fix ntpd mode 7 denial of service. [SA-10:02] Fix ZFS ZIL playback with insecure permissions. [SA-10:03] Various FreeBSD 8.0-RELEASE improvements. [EN-10:01] Security: FreeBSD-SA-10:01.bind Security: FreeBSD-SA-10:02.ntpd Security: FreeBSD-SA-10:03.zfs Errata: FreeBSD-EN-10:01.freebsd Approved by: so (simon) MFC r200392: 2009-12-14T01:06:21Z Xin LI delphij@FreeBSD.org 2009-12-14T01:06:21Z urn:sha1:c6ed36bc5f0e1cad353107d00e24cc3ebd4b489e Apply two vendor fixes for CVE-2009-3720. Security: CVE-2009-3720 MFC r196916: 2009-09-10T12:55:09Z Attilio Rao attilio@FreeBSD.org 2009-09-10T12:55:09Z urn:sha1:0600982f5862d771850210b3c4e7cadbb5c8f80c Fix a list overrun. Sponsored by: Sandvine Incorporated