| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
| |
Approved by: re (delphij)
Notes:
svn path=/releng/8.4/; revision=250167
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Update BIND to 9.8.4-P2
Removed the check for regex.h in configure in order
to disable regex syntax checking, as it exposes
BIND to a critical flaw in libregex on some
platforms. [RT #32688]
Approved by: re (rodrigc, kib)
Notes:
svn path=/stable/8/; revision=248807
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=247514
|
| |
|
|
|
|
|
| |
Upgrade to bzip2 version 1.0.6.
Notes:
svn path=/stable/8/; revision=247448
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=247142
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Import change 40eebf235370b6fe6353784ccf01ab92eed062a5 from upstream wpa:
From: Jouni Malinen <j@w1.fi>
Date: Fri, 15 Jul 2011 13:42:06 +0300
Subject: [PATCH] MD5: Fix clearing of temporary stack memory to use correct length
sizeof of the structure instead of the pointer was supposed to be used
here. Fix this to clear the full structure at the end of MD5Final().
Found by: clang ToT
Reviewed by: rpaulo
Notes:
svn path=/stable/8/; revision=246982
|
| |
|
|
|
|
|
|
|
|
|
| |
Fix two instances of undefined behaviour in contrib/nvi.
Found by: clang ToT
Obtained from: NetBSD
Reviewed by: jh
Notes:
svn path=/stable/8/; revision=246981
|
| |
|
|
|
|
|
|
|
|
| |
In contrib/opie/opiekey.c, use the correct length to zero the secret.
Found by: clang ToT
Reviewed by: delphij
Notes:
svn path=/stable/8/; revision=246980
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=246656
|
| |
|
|
|
|
|
| |
one-true-awk 20121220.
Notes:
svn path=/stable/8/; revision=246374
|
| |
|
|
|
|
|
|
|
| |
Update contrib/xz to version 5.0.4
Fix mergeinfo.
Notes:
svn path=/stable/8/; revision=245129
|
| |
|
|
|
|
|
|
|
|
| |
All security fixes were previously merged.
Release notes: https://kb.isc.org/article/AA-00795
Approved by: delphij (mentor)
Notes:
svn path=/stable/8/; revision=245039
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
gcc: avoid generating negative values to DW_AT_byte_size.
There is a bug in gcc (GCC/35998) where dwarf reports
sizes of unsigned -1 (0xffffffff).
On NetBSD this generated a faulty CTF entry which then
caused a segfault in ctfmerge. The issue was worked
around in NetBSD's Dtrace but since the issue originated
in gcc, it seems reasonable to fix it here.
Thanks to Christoph Mallon for pointing out a correct fix.
Notes:
svn path=/stable/8/; revision=245024
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=244935
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=244930
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Fix a bug in ld --gc-sections: it strips out .note sections, while it
should never do so. This can cause global constructors and destructors
to not be executed at run-time, resulting in crashes and other strange
behaviour.
Reported by: rene
Notes:
svn path=/stable/8/; revision=244905
|
| |
|
|
|
|
|
|
| |
for filters which pull in mfapi.h before stdbool.h. Issue reported by
Petr Rehor, maintainer of amavisd-milter port.
Notes:
svn path=/stable/8/; revision=244828
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This improves GDB usability when debugging code compiled with
optimization.
Upstream GDB revision f0031b6d3ae9b164b3747986ab898190bd4dcf8c (prior
to GDB's switch to GPLv3), with frame_debug_got_null_frame expanded
inline.
| 2004-12-12 Andrew Cagney <cagney@gnu.org>
|
| * frame.c (get_prev_frame): When unwinding normal frames, check
| that the PC isn't zero.
Sponsored by: ADARA Networks
Notes:
svn path=/stable/8/; revision=244119
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This provides a better display when debugging code compiled with
optimization on.
GDB git revision e8395b4efd184f745070afb953f451f99e922be7 (prior to
GDB's switch to GPLv3), modified for the interfaces provided by
GDB 6.1.1.
2005-02-28 Daniel Jacobowitz <dan@codesourcery.com>
* dwarf2loc.c (loclist_read_variable): Set optimized_out
instead of reporting an error.
* valprint.c (value_check_printable): New function.
(common_val_print): New function. Use value_check_printable.
(value_print): Use value_check_printable.
* value.h (common_val_print): Add prototype.
* c-valprint.c (c_val_print): Use common_val_print.
* cp-valprint.c (cp_print_value_fields): Likewise.
(cp_print_hpacc_virtual_table_entries): Likewise.
* f-valprint.c (f_val_print): Likewise.
* jv-valprint.c (java_value_print, java_print_value_fields):
Likewise.
* scm-valprint.c (scm_value_print): Likewise.
* stack.c (print_frame_args): Likewise.
* varobj.c (c_value_of_variable): Likewise.
* p-valprint.c (pascal_val_print, pascal_value_print): Likewise.
(pascal_object_print_value_fields): Likewise. Update call to
pascal_object_print_static_field.
(pascal_object_print_static_field): Remove TYPE argument. Use
common_val_print.
Sponsored by: ADARA Networks
Notes:
svn path=/stable/8/; revision=244118
|
| |
|
|
|
|
|
| |
netcat from OpenBSD 5.2.
Notes:
svn path=/stable/8/; revision=243819
|
| |
|
|
|
|
|
| |
of callback functions was changed from "unsigned long" to "size_t".
Notes:
svn path=/stable/8/; revision=243748
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix insufficient message length validation for EAP-TLS messages.
Fix Linux compatibility layer input validation error.
Security: FreeBSD-SA-12:06.bind
Security: FreeBSD-SA-12:07.hostapd
Security: FreeBSD-SA-12:08.linux
Security: CVE-2012-4244, CVE-2012-5166, CVE-2012-4445, CVE-2012-4576
Approved by: re
Approved by: security-officer
Notes:
svn path=/stable/8/; revision=243417
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Prevents a lockup when queried a deliberately constructed combination
of records. [CVE-2012-5166]
For more information: https://kb.isc.org/article/AA-00801
Approved by: bz
Notes:
svn path=/stable/8/; revision=241443
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Prevents a crash when queried for a record whose RDATA exceeds
65535 bytes.
Prevents a crash when validating caused by using "Bad cache" data
before it has been initialized.
ISC_QUEUE handling for recursive clients was updated to address
a race condition that could cause a memory leak. This rarely
occurred with UDP clients, but could be a significant problem
for a server handling a steady rate of TCP queries.
A condition has been corrected where improper handling of
zero-length RDATA could cause undesirable behavior, including
termination of the named process.
For more information: https://kb.isc.org/article/AA-00788
Notes:
svn path=/stable/8/; revision=240732
|
| |
|
|
|
|
|
|
| |
Google turned up Debian bug 405116, which describes the problem in
sufficient detail to identify the overflowing variables.
Notes:
svn path=/stable/8/; revision=240435
|
| |
|
|
|
|
|
|
|
| |
Teach gdb about the DW_FORM_flag_present dwarf attribute, so it doesn't
error out on files that contain it. (This attribute can be emitted by
newer versions of clang.)
Notes:
svn path=/stable/8/; revision=240413
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix a twelve year old bug in readelf: when process_dynamic_segment()
encounters a DT_RUNPATH entry, the global dynamic_info[] array is
overrun, causing some other global variable to be overwritten.
In my testcase, this was the section_headers variable, leading to
segfaults or jemalloc assertions when it was freed later on.
Thanks to Koop Mast for providing samples of a few "bad" .so files.
Notes:
svn path=/stable/8/; revision=240208
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=240127
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Add a new line to top that provides a brief summary of the ZFS ARC memory
usage on hosts using ZFS. The new line displays the total amount of RAM
used by the ARC along with the size of MFU, MRU, anonymous (in flight),
headers, and other (miscellaneous) sub-categories. The line is not
displayed on systems that are not using ZFS.
- Clarify that the cached file data pages included in the "Wired" count
in top are the BIO-level cached data (i.e. "Buf"), since the previous
phrase was a bit ambiguous with the "Cache" count.
Notes:
svn path=/stable/8/; revision=239751
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
When ntp switched between PLL and FLL mode it produced a log message
"kernel time sync status change %04x". This issue is reported in ntp
bug 452[1] which claims that this behaviour is normal and the log
message isn't necessary. I'm not sure exactly when it was removed, but
it's gone in the latest ntp release (4.2.6p5).
[1] http://bugs.ntp.org/show_bug.cgi?id=452
Notes:
svn path=/stable/8/; revision=239467
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
RFC 2289 requires all hashes be stored in little endian format before
folding to 64 bits, while SHA1 code is big endian. Therefore, a bswap32
is required before using the value.
Without this change, the implementation does not conform to test vector
found in RFC 2289.
PR: bin/170519
Submitted by: Arthur Mesh <arthurmesh gmail com> (with changes)
Notes:
svn path=/stable/8/; revision=239459
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
in BIND9
High numbers of queries with DNSSEC validation enabled can cause an
assertion failure in named, caused by using a "bad cache" data structure
before it has been initialized.
CVE: CVE-2012-3817
Posting date: 24 July, 2012
Notes:
svn path=/stable/8/; revision=238749
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Merge a local fix to OpenBSM's libauditd to avoid a directory descriptor
leak when iterating over possible audit trail directories. This fix will
be merged upstream in an identical form, but hasn't yet appeared in an
OpenBSM release.
Submitted by: guido
Obtained from: TrustedBSD Project
Notes:
svn path=/stable/8/; revision=238686
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Bring a couple of fixes for gcc optimizations.
The GCC4.3 branch contains some optimization fixes
that were not considered regressions and therefore
were never backported. We are bringing a couple of
them that are under GPLv2 since they were made
before the license switch upstream.
Notes:
svn path=/stable/8/; revision=237679
|
| |
|
|
| |
Notes:
svn path=/stable/8/; revision=237614
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bring a couple of libstdc++ patches from Apple's llvm-gcc project.
Modified Fri Jul 10 07:44:34 2009 CDT by rafael
backport part of
http://gcc.gnu.org/ml/gcc-cvs/2007-10/msg00118.html
The patch is for libstdc++ and it was GPL2 at the time.
Modified Tue Apr 29 01:20:19 2008 CDT by asl
Backport from mainline (pre-GPLv3).
Fix for sizeof(const void*) > sizeof(unsigned long).
Notes:
svn path=/stable/8/; revision=237508
|
| |
|
|
|
|
|
|
|
| |
Fix paths for example files.
PR: docs/140725
Notes:
svn path=/stable/8/; revision=236767
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a critical bugfix:
Processing of DNS resource records where the rdata field is zero length
may cause various issues for the servers handling them.
Processing of these records may lead to unexpected outcomes. Recursive
servers may crash or disclose some portion of memory to the client.
Secondary servers may crash on restart after transferring a zone
containing these records. Master servers may corrupt zone data if the
zone option "auto-dnssec" is set to "maintain". Other unexpected
problems that are not listed here may also be encountered.
All BIND users are strongly encouraged to upgrade.
Notes:
svn path=/stable/8/; revision=236590
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Feature Change
* BIND now recognizes the TLSA resource record type, created to
support IETF DANE (DNS-based Authentication of Named Entities)
Bug Fix
* The locking strategy around the handling of iterative queries
has been tuned to reduce unnecessary contention in a multi-
threaded environment.
Other critical bug fixes are included.
All BIND users are encouraged to upgrade.
Notes:
svn path=/stable/8/; revision=236197
|
| |
|
|
|
|
|
|
|
|
|
| |
Bring in a subset of gcc fixes that were backported to
the GCC 4.1 branch and are available under GPLv2.
Reviewed by: mm
Approved by: jhb (mentor)
Notes:
svn path=/stable/8/; revision=235966
|
| |
|
|
|
|
|
|
| |
Fix a bug in the TCP tracerouting which resulted in not accepting any
incoming packets. So all packets seemed to be lost.
Notes:
svn path=/stable/8/; revision=235163
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Merges r215937,216184 and r211062,215880,220968:
- Remove unused traceroute(8) contrib code from head
- make WARNS=3 clean
- fix an operator precedence bug for TCP tracerouting
- Remove unneeded struct timezone passed to gettimeofday().
- Remove clause 3 and 4 from TNF licenses.
- Check return code of setuid() in traceroute.
Requested by: tuexen
Notes:
svn path=/stable/8/; revision=235137
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix a typo in GCC affecting calculations with -ffast-math.
The fix is similar to the one applied in GCC-4.3 in
GCCSVN-r117929 under the GPLv2.
Submitted by: Andrey Simonenko
Reviewed by: mm
Approved by: jhb (mentor)
Notes:
svn path=/stable/8/; revision=234067
|
| |
|
|
|
|
|
|
|
|
| |
Remove stray semicolon. This fix appears in later upstream gdb versions.
PR: gnu/136705
Submitted by: eadler
Notes:
svn path=/stable/8/; revision=234054
|
| |
|
|
|
|
|
| |
bug fixes.
Notes:
svn path=/stable/8/; revision=233915
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Author: obrien
Date: Mon Oct 24 20:52:41 2011 UTC (4 months, 3 weeks ago)
Changed paths: 3
Log Message:
* Don't give the impression that this compiler is GPLv3.
(It is "well known" that GCC 4.2.2 is GPLv3.)
* Don't give the impression that this compiler isn't "trustable".
* Fix dependency nit.
Notes:
svn path=/stable/8/; revision=233055
|
| |
|
|
|
|
|
|
| |
In batch mode, exit after receiving SIGINT, instead of immediate
output of the next display.
Notes:
svn path=/stable/8/; revision=232957
|
| |
|
|
|
|
|
| |
Update to tcsh 6.18.01
Notes:
svn path=/stable/8/; revision=232635
|
| |
|
|
|
|
|
|
|
| |
Fix a race in top non-interactive mode. Use plain sleep(3) call instead
of arming timer and then pausing. If SIGALRM is delivered before pause(3)
is entered, top hangs.
Notes:
svn path=/stable/8/; revision=232599
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Merge multi-FIB IPv6 support.
Extend the so far IPv4-only support for multiple routing tables (FIBs)
introduced in r178888 to IPv6 providing feature parity.
This includes an extended rtalloc(9) KPI for IPv6, the necessary
adjustments to the network stack, and user land support as in netstat.
Sponsored by: Cisco Systems, Inc.
Notes:
svn path=/stable/8/; revision=232552
|
