===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/60.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -c -r1.2 -r1.3
*** www/60.html	2016/07/03 20:20:13	1.2
--- www/60.html	2016/07/21 09:57:48	1.3
***************
*** 106,117 ****
--- 106,137 ----
  
  <li>Security improvements:
      <ul>
+     <li><tt>W^X</tt> is now strictly enforced by default;
+ 	a program can only violate it if the executable is marked with
+ 	<tt>PT_OPENBSD_WXNEEDED</tt> and its is located on a filesystem
+ 	mounted with the <tt>wxallowed</tt> <a href="http://man.openbsd.org/?query=mount&amp;sec=8">mount(8)</a> option.
+     <li>The <a href="http://man.openbsd.org/?query=setjmp&amp;sec=3">setjmp(3)</a>
+ 	family of functions now apply XOR cookies to stack and return-address
+ 	values in the jmpbuf on amd64, hppa, i386, mips64, and powerpc.
+     <li><a href="http://man.openbsd.org/?query=sigreturn&amp;sec=2">sigreturn(2)</a>
+ 	can now only be used by the kernel-provided signal trampoline,
+ 	with a cookie to detect attempts to reuse it.
      <li>...
      </ul>
  <p>
  
  <li>Assorted improvements:
      <ul>
+     <li>The thread library can now be loaded into a single-threaded process.
+     <li>Improved symbol handling and standards compliance in libc.
+ 	For example, defining an <tt>open()</tt> function will no longer
+ 	interfere with the operation of
+ 	<a href="http://man.openbsd.org/?query=fopen&amp;sec=3">fopen(3)</a>.
+     <li><tt>PT_TLS</tt> sections are now supported in initially loaded object.
+     <li>Improved handling of "no paths" and "empty path" in
+ 	<a href="http://man.openbsd.org/?query=fts&amp;sec=3">fts(3)</a>.
+     <li><a href="http://man.openbsd.org/?query=kdump&amp;sec=1">kdump(1)</a>
+ 	now dumps pollfd structures.
      <li>...
      </ul>
  <p>