summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* FreeBSD-SA-04:16.fetch:releng/4.7Colin Percival2004-11-183-2/+7
| | | | | | | | | | MFC revision 1.75 of src/usr.bin/fetch/fetch.c Bump newvers.sh and document in UPDATING. Approved by: so Notes: svn path=/releng/4.7/; revision=137856
* Merge updated patch from vendor branch (1.1.1.17)Dag-Erling Smørgrav2004-05-201-2/+40
| | | | | | | Approved by: so Notes: svn path=/releng/4.7/; revision=129489
* Bump and document patch level.Dag-Erling Smørgrav2004-05-192-1/+4
| | | | | | | Approved by: so Notes: svn path=/releng/4.7/; revision=129423
* Merge parser fix from vendor branch (rev 1.1.1.16)Dag-Erling Smørgrav2004-05-191-2/+2
| | | | | | | Approved by: so Notes: svn path=/releng/4.7/; revision=129419
* MFC in part tcp_input.c 1.228, tcp_subr.c 1.182, tcp_var.h 1.98:Jacques Vidrine2004-03-175-1/+50
| | | | | | | Limit TCP segment reassembly queue size. Notes: svn path=/releng/4.7/; revision=127109
* MFC sysv_shm.c 1.90: Correct a reference counting bug in shmat(2).Jacques Vidrine2004-02-053-1/+5
| | | | Notes: svn path=/releng/4.7/; revision=125489
* Document the recent commits to src/usr.bin/gensetdefs/gensetdefs.c andDag-Erling Smørgrav2004-02-021-0/+5
| | | | | | | | | | their (non-security-related) purpose. Requested by: imp Approved by: so (nectar) Notes: svn path=/releng/4.7/; revision=125331
* MFS (1.4.2.1): fix syntax errors which trip up newer gcc versions.Dag-Erling Smørgrav2004-02-021-2/+2
| | | | | | | | | This allows building a RELENG_4_7 world on a -CURRENT system. Approved by: so (nectar) Notes: svn path=/releng/4.7/; revision=125319
* Correct a remote denial-of-service attack in named(8).Jacques Vidrine2003-11-274-5/+14
| | | | Notes: svn path=/releng/4.7/; revision=123008
* MFS 1.10.2.5: Unbreak read/write behavior (introduced in previous revision).Jacques Vidrine2003-10-041-3/+1
| | | | Notes: svn path=/releng/4.7/; revision=120752
* Correct vulnerabilities in OpenSSL ASN.1 parsing.Jacques Vidrine2003-10-035-6/+12
| | | | | | | Obtained from: openssl.org CVS Notes: svn path=/releng/4.7/; revision=120712
* Merge from RELENG_4: kern_subr.c 1.31.2.3, procfs_dbregs.c 1.4.2.4,Jacques Vidrine2003-10-0310-122/+47
| | | | | | | | | | procfs_fpregs.c 1.11.2.4, procfs_regs.c 1.10.2.4, procfs_rlimit.c 1.5.2.1, procfs_status.c 1.20.2.5, uio.h 1.11.2.2, linprocfs_misc.c 1.3.2.9. Correct several integer underflows/overflows in procfs and linprocfs. Notes: svn path=/releng/4.7/; revision=120689
* MFS 1.55.2.11: Correct a reference counting bug in readv(2).Jacques Vidrine2003-10-023-7/+10
| | | | Notes: svn path=/releng/4.7/; revision=120667
* Bump patch level for updated arplookup fix.Jacques Vidrine2003-09-252-1/+4
| | | | Notes: svn path=/releng/4.7/; revision=120433
* Fix a logic error in the check to see if arplookup() should free the route.Bruce M Simpson2003-09-241-1/+1
| | | | | | | | Noticed by: Mike Hogsett Reviewed by: ru Notes: svn path=/releng/4.7/; revision=120420
* Update patch levelDag-Erling Smørgrav2003-09-242-1/+4
| | | | Notes: svn path=/releng/4.7/; revision=120419
* Update version string.Dag-Erling Smørgrav2003-09-243-3/+3
| | | | Notes: svn path=/releng/4.7/; revision=120416
* MFS: plug a resource leak in ssh1 challenge/response code.Dag-Erling Smørgrav2003-09-243-1/+22
| | | | Notes: svn path=/releng/4.7/; revision=120415
* MFC: (1.13) remove bogus calls to xfree().Dag-Erling Smørgrav2003-09-241-2/+0
| | | | Notes: svn path=/releng/4.7/; revision=120412
* MFC: (1.12) resp is a pointer to an array of structs.Dag-Erling Smørgrav2003-09-241-4/+4
| | | | Notes: svn path=/releng/4.7/; revision=120409
* Fix a bug in arplookup(), whereby a hostile party on a locallyBruce M Simpson2003-09-233-7/+20
| | | | | | | | | | | attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security <product-security@apple.com> Notes: svn path=/releng/4.7/; revision=120385
* MFC: sendmail address parsing bug fixGregory Neil Shapiro2003-09-174-2/+9
| | | | | | | Approved by: so (nectar) Notes: svn path=/releng/4.7/; revision=120179
* MFC buffer.c 1.2, channels.c 1.16, deattack.c 1.1.1.6, misc.c 1.1.1.5,Jacques Vidrine2003-09-179-28/+43
| | | | | | | | session.c 1.41, ssh-agent.c 1.19: Correct more cases of allocation size bookkeeping errors. Notes: svn path=/releng/4.7/; revision=120167
* MFC buffer.c 1.1.1.7: Do not record expanded size before attempting toJacques Vidrine2003-09-164-6/+12
| | | | | | | reallocate associated memory. Notes: svn path=/releng/4.7/; revision=120131
* Merge sm_resolve.c 1.229.2.17: Fix for DNS map processing error.Jacques Vidrine2003-08-253-1/+5
| | | | Notes: svn path=/releng/4.7/; revision=119481
* Fix typo: `uap->data' versus `data'.Jacques Vidrine2003-08-111-1/+1
| | | | | | | Noticed by: Anil <atria78@entic.net>, Bruce M Simpson <bms@spc.org> Notes: svn path=/releng/4.7/; revision=118778
* MFC 1.24: Validate the iBCS2 statfs(2) length parameter.Jacques Vidrine2003-08-103-1/+8
| | | | Notes: svn path=/releng/4.7/; revision=118755
* MFC sys_process.c 1.113, spigot.c 1.60:Jacques Vidrine2003-08-104-2/+8
| | | | | | | | Add or correct range checking of signal numbers in system calls and ioctls. Notes: svn path=/releng/4.7/; revision=118753
* realpath(3) bug fix: There was an off-by-one error in computing theJacques Vidrine2003-08-033-2/+6
| | | | | | | size of the resulting canonical path. Notes: svn path=/releng/4.7/; revision=118401
* Update FreeBSD Security Advisory NumberGregory Neil Shapiro2003-03-291-1/+1
| | | | | | | Approved by: so (nectar) Notes: svn path=/releng/4.7/; revision=112825
* sendmail parsing buffer overflow fixGregory Neil Shapiro2003-03-295-4/+20
| | | | | | | | | Advisory number to be filled in later Approved by: so (nectar) Notes: svn path=/releng/4.7/; revision=112818
* MFC: crypto/openssl/ssl/s3_srvr.c 1.1.1.11Chris D. Faulhaber2003-03-215-19/+47
| | | | | | | | | | | | | Import of PKCS #1 security fix. http://www.openssl.org/news/secadv_20030319.txt MFC: crypto/openssl/crypto/rsa/rsa_eay.c 1.11 crypto/openssl/crypto/rsa/rsa_lib.c 1.9 Enable RSA blinding by default. http://www.openssl.org/news/secadv_20030317.txt Notes: svn path=/releng/4.7/; revision=112466
* MFC:Chris D. Faulhaber2003-03-204-10/+19
| | | | | | | | | | src/lib/libc/xdr/xdr_mem.c 1.12 src/include/rpc/xdr.h 1.23 Clean up some signed/unsigned issues in the XDR code. Notes: svn path=/releng/4.7/; revision=112432
* FreeBSD-SA-03:04.sendmail: sendmail header parsing buffer overflowGregory Neil Shapiro2003-03-037-90/+138
| | | | | | | Approved by: security-officer (nectar) Notes: svn path=/releng/4.7/; revision=111828
* MFC tcp_syncache.c 1.38: Improve security and performance of syncookies.Jacques Vidrine2003-02-233-27/+51
| | | | Notes: svn path=/releng/4.7/; revision=111352
* Merge from RELENG_5_0: Update to OpenSSL 0.9.6i.Jacques Vidrine2003-02-20267-775/+1604
| | | | Notes: svn path=/releng/4.7/; revision=111192
* Add touch to bootstap-tools. It appears to be necessary in orderJacques Vidrine2003-02-201-1/+1
| | | | | | | to make release RELENG_4_7 on later 4.x or 5.x systems. Notes: svn path=/releng/4.7/; revision=111191
* Correct a double-free bug and disable a dangerous feature inJacques Vidrine2003-02-043-6/+10
| | | | | | | | | | | cvs. See <URL:http://online.securityfocus.com/archive/1/72584>, <URL:http://security.e-matters.de/advisories/012003.html>, and the soon-to-be-released FreeBSD-SA-03:01.cvs for details. Notes: svn path=/releng/4.7/; revision=110341
* -- Emphasize on the first line that this is a security branch (and whichJacques Vidrine2003-01-311-2/+11
| | | | | | | | | branch specifically). -- Update imp's copyright to 2003. -- Add some boiler-plate text for security branches that was missing. Notes: svn path=/releng/4.7/; revision=110143
* This commit was manufactured by cvs2svn to create branch 'RELENG_4_7'.cvs2svn2003-01-281-0/+75
| | | | Notes: svn path=/releng/4.7/; revision=110003
* MFC 1.114: Fix a file descriptor leak in fpathconf(2).Jacques Vidrine2003-01-063-5/+10
| | | | Notes: svn path=/releng/4.7/; revision=108789
* Correct recent name server vulnerabilities as documented atJacques Vidrine2002-11-1411-20/+62
| | | | | | | | | | <URL:http://www.isc.org/products/BIND/bind-security.html> and <URL:http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469>. Obtained from: ISC Notes: svn path=/releng/4.7/; revision=106886
* Arghh, apply -p1 to BRANCH, not REVISION.Chris D. Faulhaber2002-10-241-2/+2
| | | | | | | Submitted by: Andrew <andrew@ugh.net.au> Notes: svn path=/releng/4.7/; revision=105833
* MFS: Allocate 64K recieve buffer for DNS responses.Hajimu UMEMOTO2002-10-232-26/+54
| | | | | | | | | | lib/libc/net/gethostbydns.c: 1.27.2.4 lib/libc/net/getnetbydns.c: 1.13.2.4 Approved by: security-officer Notes: svn path=/releng/4.7/; revision=105799
* Update UPDATING and bump patch level for tar(1) and kadmind fixes.Chris D. Faulhaber2002-10-232-1/+6
| | | | Notes: svn path=/releng/4.7/; revision=105795
* MFC kadm_ser_wrap.c:1.1.1.4: fix buffer overflowAssar Westerlund2002-10-233-10/+19
| | | | | | | | | | MFC updating kerberosIV and kerberos5 versions consistenly Approved by: security-officer Obtained from: kth-krb CVS Notes: svn path=/releng/4.7/; revision=105794
* import 1.27 to fix buffer overflow:Assar Westerlund2002-10-221-1/+8
| | | | | | | | | | check size of rlen Approved by: security-officer Obtained from: Heimdal CVS Notes: svn path=/releng/4.7/; revision=105676
* MFS: fix security bug in contains_dot_dot routine.Maxim Sobolev2002-10-212-1/+17
| | | | | | | Approved by: jedgar (on behalf of the SO team) Notes: svn path=/releng/4.7/; revision=105621
* DE release notes catchup for RELENG_4_7, Phase 2 of 2, framework fixes:Udo Erdelhoff2002-10-1711-74/+13
| | | | | | | | | | | | | | | - remove the localized release.ent from cvs and catalog - change all articles to use the global release.ent, not the local one - bring the release.dsl into sync with the english version Note: There is no phase 3 for the RELENG_4_7 stuff because there have been no changes to the english release notes except framework stuff Reviewed by: re, security-officer Approved by: bmah Notes: svn path=/releng/4.7/; revision=105316
* Bring DE translation of the RELENG_4_7 release notes up to speedUdo Erdelhoff2002-10-165-772/+962
| | | | | | | | | | Phase 1 of 3: Catch up to RELENG_4_7_BP Reviewed by: re, security-officer Approved by: bmah Notes: svn path=/releng/4.7/; revision=105289
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-22 15:10:48 +0000