FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=releng%2F9.3 2016-03-07T16:22:11Z 2016-03-07T16:22:11Z Xin LI delphij@FreeBSD.org 2016-03-07T16:22:11Z urn:sha1:7ebda18cb2c3ac85e9b99012400181548ad60dec Security: FreeBSD-SA-16:12.openssl Approved by: so 2015-03-19T17:42:38Z Xin LI delphij@FreeBSD.org 2015-03-19T17:42:38Z urn:sha1:f998a156a4d4b93afcf6df95915b368ba049cb6b Security: FreeBSD-SA-15:06.openssl Security: CVE-2015-0209 Security: CVE-2015-0286 Security: CVE-2015-0287 Security: CVE-2015-0288 Security: CVE-2015-0289 Security: CVE-2015-0293 Approved by: so 2015-02-25T05:56:54Z Xin LI delphij@FreeBSD.org 2015-02-25T05:56:54Z urn:sha1:fec769336cf1605c74783ada99c03ae271530889 Fix BIND remote denial of service vulnerability. [SA-15:05] Fix vt(4) crash with improper ioctl parameters. [EN-15:01] Updated base system OpenSSL to 0.9.8zd. [EN-15:02] Fix freebsd-update libraries update ordering issue. [EN-15:03] Approved by: so 2014-06-09T17:22:49Z Jung-uk Kim jkim@FreeBSD.org 2014-06-09T17:22:49Z urn:sha1:5532940f4712e78cd908b555260213123c2a512e Approved by: re (delphij) 2014-06-09T16:30:56Z Jung-uk Kim jkim@FreeBSD.org 2014-06-09T16:30:56Z urn:sha1:9b3686cdf76ea1aeb060cd93cca157356e753786 Approved by: re (kib), so (delphij) 2014-05-28T19:05:46Z Xin LI delphij@FreeBSD.org 2014-05-28T19:05:46Z urn:sha1:b17674e79accdfa5a66c3224944b70fced9dce66 Switch using the new $2b$ format by default, when bcrypt is used. Relnotes: default Blowfish crypt(3) format have been changed to $2b$. Approved by: re (gjb) 2014-03-31T14:39:56Z Dag-Erling Smørgrav des@FreeBSD.org 2014-03-31T14:39:56Z urn:sha1:8445f9d73512b4333e78ed31f64eab75a676110f r256126, r257954, r261320, r261499, r263691, r263712): upgrade to OpenSSH 6.6p1 via 6.3p1, 6.4p1 and 6.5p1. Differences relative to head: - No DNSSEC support since stable/9 does not have LDNS - Sandboxing off by default, and uses rlimit instead of Capsicum - ED25519 moved to the bottom of the order of preference to avoid "new public key" warnings 2014-03-27T00:24:48Z Xin LI delphij@FreeBSD.org 2014-03-27T00:24:48Z urn:sha1:76a32489700e6028e2aad673faa36f5604afad31 Refresh our implementation of OpenBSD's Blowfish password format. Notable changes: - Support of $2b$ password format to address a problem where very long passwords (more than 256 characters, when an integer overflow would happen and cause the length to wrap at 256). - Updated pseudo code in comments to reflect the reality. - Removed our local shortcut of processing magic string and rely on the centralized and tigntened validation. - Diff reduction from upstream. For now we are still generating the older $2a$ format of password but we will migrate to the new format once the format is formally finalized. 2014-03-20T10:56:05Z Dag-Erling Smørgrav des@FreeBSD.org 2014-03-20T10:56:05Z urn:sha1:a0f99e6fc99e8095a750256681e75e72d53e00be MFH (r255386): make libssh private MFH (r255369, r255376, r255393, r262530): import OpenPAM Nummularia 2013-05-30T12:25:58Z Dag-Erling Smørgrav des@FreeBSD.org 2013-05-30T12:25:58Z urn:sha1:d033ec2902facc517ed1bc7cb3deb8dad811cb52