aboutsummaryrefslogtreecommitdiff
path: root/sys
Commit message (Collapse)AuthorAgeFilesLines
* Correct problems with locking, namei leakage, and symlinkreleng/6.0Colin Percival2007-02-144-70/+105
| | | | | | | | | | | creation in the NFS subsystem. Approved by: so (cperciva) Submitted by: re (hrs) Errata: FreeBSD-EN-07:01.nfs Notes: svn path=/releng/6.0/; revision=166720
* Fix jail rc.d script privilege escalation via symlink attack againstSimon L. B. Nielsen2007-01-111-1/+1
| | | | | | | | | | /var/log/console.log and mount points. Security: FreeBSD-SA-07:01.jail Approved by: so (simon) Notes: svn path=/releng/6.0/; revision=165943
* Correct a signedness bug which allowed members of the operatorColin Percival2006-12-062-2/+2
| | | | | | | | | | group to read kernel memory. Security: FreeBSD-SA-06:25.kmem Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=164942
* Correct multiple vulnerabilities in OpenSSH.Simon L. B. Nielsen2006-09-301-1/+1
| | | | | | | | Security: FreeBSD-SA-06:22.openssh Approved by: so (simon) Notes: svn path=/releng/6.0/; revision=162896
* Correct problem in the 2006-09-28 patch concerning the handling ofColin Percival2006-09-291-1/+1
| | | | | | | | | | | excessively large DH moduli. Reported by: Steve Kiernan (Juniper SIRT) Security: FreeBSD-SA-06:23.openssl Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=162788
* Correct multiple vulnerabilities in crypto(3).Colin Percival2006-09-281-1/+1
| | | | | | | | | | | Limit the size of public keys used in order to protect applications from a denial of service via insane key sizes. Security: FreeBSD-SA-06:23.openssl Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=162724
* Correct multiple vulnerabilities in gzip(1).Simon L. B. Nielsen2006-09-191-1/+1
| | | | | | | | Security: FreeBSD-SA-06:21.gzip Approved by: so (simon) Notes: svn path=/releng/6.0/; revision=162447
* Correct incorrect PKCS#1 v1.5 padding validation in crypto(3). [1]Simon L. B. Nielsen2006-09-061-1/+1
| | | | | | | | | | | | Correct multiple denial-of-service vulnerabilities in BIND related to SIG Query Processing and Excessive Recursive Queries. [2] Security: FreeBSD-SA-06:19.openssl [1] Security: FreeBSD-SA-06:20.bind [2] Approved by: so (simon) Notes: svn path=/releng/6.0/; revision=162076
* Correct buffer overflow in the handling of LCP options in ppp(4)Colin Percival2006-08-232-13/+25
| | | | | | | | Security: FreeBSD-SA-06:18.ppp Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=161557
* Correct a bug in the handling of multipart messages by sendmail(8)Colin Percival2006-06-141-1/+1
| | | | | | | | | | | which can allow a malformed message to crash a sendmail queue processing process. Security: FreeBSD-SA-06:17.sendmail Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=159608
* Enable inadvertantly disabled "securenet" access controls in ypserv. [1]Colin Percival2006-05-312-2/+9
| | | | | | | | | | | | Correct a bug in the handling of backslash characters in smbfs which can allow an attacker to escape from a chroot(2). [2] Approved by: so (cperciva) Security: FreeBSD-SA-06:15.ypserv [1] Security: FreeBSD-SA-06:16.smbfs [2] Notes: svn path=/releng/6.0/; revision=159118
* MFC: Correct a local information leakage bug affecting AMD FPUs.Colin Percival2006-04-193-3/+77
| | | | | | | | Security: FreeBSD-SA-06:14.fpu Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=157863
* Add missing code needed for the detection of IPSec packet replays. [1]Colin Percival2006-03-222-1/+18
| | | | | | | | | | | | | | | | Correctly identify the user running opiepasswd(1) when the login name differs from the account name. [2] Modify timeout handling logic in sendmail(8) to correct a reported signal handling race condition. [3] Approved by: so (cperciva) Security: FreeBSD-SA-06:11.ipsec [1] Security: FreeBSD-SA-06:12.opie [2] Security: FreeBSD-SA-06:13.sendmail [3] Notes: svn path=/releng/6.0/; revision=157000
* Correct a remote kernel panic when processing zero-length RPC recordsSimon L. B. Nielsen2006-03-012-2/+2
| | | | | | | | | | via TCP. [06:10] Security: FreeBSD-SA-06:10.nfs Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=156148
* Make sure buffers in if_bridge are fully initialized before copyingColin Percival2006-01-254-3/+6
| | | | | | | | | | | | | | | | | | them to userland. [1] MFC rev. 1.37 of sys/net80211/ieee80211_ioctl.c: Correct a logic error which could allow too much data to be copied into userland. [2] MFC rev. 1.16 of sys/contrib/pf/net/pf_norm.c: Correct an error in pf handling of IP packet fragments which could result in a kernel panic. [3] Security: FreeBSD-SA-06:06.kmem [1] [2] Security: FreeBSD-SA-06:07.pf [3] Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=154808
* Correct a buffer overflow when scanning for 802.11 wireless networks.Colin Percival2006-01-182-5/+17
| | | | | | | | Security: FreeBSD-SA-06:05.80211 Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=154506
* Correct insecure temporary file usage in texindex. [06:01]Colin Percival2006-01-112-2/+2
| | | | | | | | | | | | | | | | | | Correct insecure temporary file usage in ee. [06:02] Correct a race condition when setting file permissions, sanitize file names by default, and fix a buffer overflow when handling files larger than 4GB in cpio. [06:03] Fix an error in the handling of IP fragments in ipfw which can cause a kernel panic. [06:04] Security: FreeBSD-SA-06:01.texindex Security: FreeBSD-SA-06:02.ee Security: FreeBSD-SA-06:03.cpio Security: FreeBSD-SA-06:04.ipfw Approved by: so (cperciva) Notes: svn path=/releng/6.0/; revision=154217
* Merge from RELENG_6 of src/sys/nfsclient/nfs_vnops.c rev 1.258.2.1:Xin LI2005-12-192-2/+2
| | | | | | | | | | | | MFC 1.260 (by ps): Fixed a panic that can happen when nfs_lookup() hits an error. Work done by: Mohan Srinivasan Approved by: re (scottl), so (cperciva) Erratum: FreeBSD-EN-05:04.nfs Notes: svn path=/releng/6.0/; revision=153538
* Welcome to 6.0-RELEASE.Scott Long2005-11-021-1/+1
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151960
* MFC 1.59SUZUKI Shinsuke2005-11-011-75/+51
| | | | | | | | | statically configured IPv6 address is properly added/deleted now Approved by: re(scottl) Notes: svn path=/releng/6.0/; revision=151947
* MFC: Enable beastie.4th.Yoshihiro Takahashi2005-10-301-2/+2
| | | | | | | Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151884
* MFCScott Long2005-10-302-10/+43
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151881
* This commit was manufactured by cvs2svn to create branch 'RELENG_6_0'.cvs2svn2005-10-301-0/+17
| | | | Notes: svn path=/releng/6.0/; revision=151876
* MFC rev 1.113Scott Long2005-10-291-0/+3
| | | | | | | | Submitted by delphij Approved by: re Notes: svn path=/releng/6.0/; revision=151861
* Sync RELENG_6_0 with all of the FFS fixes from Tor.Scott Long2005-10-295-64/+59
| | | | | | | | Submitted by: tegge Approved by: re Notes: svn path=/releng/6.0/; revision=151853
* MFC: (1.16) Fixing a name collision in module declaration by renamingTai-hwa Liang2005-10-281-3/+3
| | | | | | | | | | | | "firewire" to "if_firewire." According to the PR originator and Cai's testing result, this bug prevents a RELENG_6 GENERIC kernel from loading if_fwip.ko and will panic the kernel if users compile "device fwip" into their GENERIC kernel. Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151830
* Fix possible live-lock under heavy load where we can't allocate morePawel Jakub Dawidek2005-10-281-1/+12
| | | | | | | | | | | | memory for request. I was sure graid3 should handle such situations well, but green@ reported it is not and we want to fix it before 6.0. Submitted by: green Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151823
* MF6: Add DEFAULTS files for amd64, i386, and pc98.John Baldwin2005-10-283-18/+3
| | | | | | | Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151819
* MF6: config -V and support for DEFAULTS.John Baldwin2005-10-288-8/+8
| | | | | | | Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151817
* MF6: Add COMPAT_FREEBSD5.John Baldwin2005-10-281-0/+3
| | | | | | | Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151816
* Fix this:Martin Cracauer2005-10-281-2/+6
| | | | | | | | | | | | | | | | kern/87959 cracauer ext2fs: no cp(1) possible, mmap returns EINVAL ext2fs was missing vnode_create_vobject. (Reisefs probably has the same problem but I want to get this in quick for 6-release) releng-6 branches commits approved by Scott Long. Approved by: re Notes: svn path=/releng/6.0/; revision=151812
* MFC: Fix regression in Dell PERC/ROMB systems.Scott Long2005-10-282-27/+45
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151808
* This commit was manufactured by cvs2svn to create branch 'RELENG_6_0'.cvs2svn2005-10-283-0/+49
| | | | Notes: svn path=/releng/6.0/; revision=151803
* MFC Rev 1.60SUZUKI Shinsuke2005-10-281-0/+2
| | | | | | | | | perform NUD on an IPv6-aware point-to-point interface Approved by: re(scottl) Notes: svn path=/releng/6.0/; revision=151799
* MFC:Ade Lovett2005-10-284-0/+8
| | | | | | | | | | | | Specifically panic() in the case where pmap_insert_entry() fails to get a new pv under high system load where the available pv entries have been exhausted before the pagedaemon has a chance to wake up to reclaim some. Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151793
* MF RELENG_6 r1.34.2.1Peter Grehan2005-10-281-0/+2
| | | | | | | | | | | | | | > The BCM5401 dspcode load on media changes also applies > to the 100/1000 BCM5400 phy. This fixes the problem with > the GEM port not syncing up on Sawtooth G4's. > > Obtained from: NetBSD > Reported by: Ben Rosengart <ben + freebsd org at narcissus net> Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151778
* MFC vfs_cluster.c Revision 1.168Stephan Uphoff2005-10-281-3/+8
| | | | | | | | | | | Only set B_RAM (Read ahead mark) on an incore buffers if we can lock it. This fixes a race condition caused by the unlocked write access to the b_flags field. Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151777
* MFC of Rev. 1.6.2.1:Ken Smith2005-10-271-0/+15
| | | | | | | | | | | | | | | | > Temporary hack to get the hme network interface on Sun E250 servers to > work. The code comment describes the issue, basically an as yet not > totally understood interrupt routing problem. This hack is being done > to RELENG_6 so that the hme interface works on E250's for the release, > but is not being done in HEAD so more work on the interrupt routing > issue can be done. > > Requested by: marius Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151770
* MFC r1.1334:Joel Dahl2005-10-271-1/+2
| | | | | | | | | | snd_ess needs snd_sbc, so add a note about that. Requested by: delphij Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151766
* MFC if_bridge r1.30Andrew Thompson2005-10-271-19/+25
| | | | | | | | | | | | > If we have been called from ether_ifdetach() then do not try and clear the > promisc flag from the member interface, this is a no-op anyway since the > interface is disappearing. The driver may have already released > its resources such as miibus and this is likely to panic the kernel. Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151765
* MFC: Sync the mpt driver to pick up license refinement and INVARIANTS error.Scott Long2005-10-277-25/+23
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151760
* MFC:Gleb Smirnoff2005-10-274-7/+24
| | | | | | | | | | | | | - Fix leak of struct nlminfo on process exit. - Fix malloc type collision, that made the above problem difficult to understand. Reported by: Vladimir Sharun <sharun ukr.net> Approved by: re (scottl) Notes: svn path=/releng/6.0/; revision=151755
* MFC: synchronize the NDISulator with the head and RELENG_5 branches,Bill Paul2005-10-2712-1573/+3259
| | | | | | | | | add -D ndis support to wpa_supplicant Approved by: re Notes: svn path=/releng/6.0/; revision=151742
* MFC: add 1 microsecond delay to pci_add_children() bus enumeration loopBill Paul2005-10-271-0/+1
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151739
* MFC:Søren Schmidt2005-10-271-6/+10
| | | | | | | | | | | Enclose the delayed attach in Giant so we dont loose the race with other drivers trying to attach ATA devices like pccard. Dont clear the delayed flag before we are acutally finished. Approved by: re@ (scottl) Notes: svn path=/releng/6.0/; revision=151737
* MFC rev 1.34SUZUKI Shinsuke2005-10-271-9/+17
| | | | | | | | | fixed a kernel crash when IPv6 PIM-SM routing is enabled and a PIM register message is received Approved by: re(scottl) Notes: svn path=/releng/6.0/; revision=151730
* MFC: 1.2: don't set segment registers yet.Peter Wemm2005-10-261-0/+4
| | | | | | | Approved by: re Notes: svn path=/releng/6.0/; revision=151718
* Virtual channel default speed should be based on soundcardAriff Abdullah2005-10-261-2/+30
| | | | | | | | | | | capabilities. This solve various mysterious slowdown especially for fixed-rate ac97 soundcards. Approved by: re (scottl), netchild (mentor) Reviewed by: andreas Notes: svn path=/releng/6.0/; revision=151716
* Rearrange sound unregister procedure to detect mixer busyAriff Abdullah2005-10-261-12/+15
| | | | | | | | | | | | state and destroy it before anything else. This solve panic issue during sound module unloading if the sound / mixer device being held by external processes. Approved by: re (scottl), netchild (mentor) Reviewed by: andreas Notes: svn path=/releng/6.0/; revision=151715
* Track every mixer device closing for proper refcount calculation.Ariff Abdullah2005-10-261-1/+1
| | | | | | | | | | | This solve device busy and panic issues during sound module unloading. Approved by: re (scottl), netchild (mentor) Reviewed by: andreas Notes: svn path=/releng/6.0/; revision=151714
generated by cgit v1.3 (git 2.53.0) at 2026-04-05 01:50:04 +0000