===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/71.html,v
retrieving revision 1.47
retrieving revision 1.48
diff -u -r1.47 -r1.48
--- www/71.html 2022/04/15 04:36:09 1.47
+++ www/71.html 2022/04/15 04:44:54 1.48
@@ -948,15 +948,11 @@
Portable Improvements
- Enabled ASAN CI on Linux platform.
- Thanks to Ilya Shipitsin (chipitsine <at> gmail com).
- Fixed various POSIX compliance and other portability issues
found by the port to the Sortix operating system.
- Add libmd as platform specific libraries for Solaris.
- Issue reported from (ihsan <at> opencsw org) on libressl ML.
- Set IA-64 compiler flag only if it is HP-UX with IA-64.
- Suggested from Larkin Nickle (me <at> larbob org) by libressl ML.
- Enabled and scheduled Coverity scan.
- Contributed by Ilya Shipitsin (chipitsine <at> gmail com) on github.
Compatibility Changes
@@ -981,13 +977,8 @@
Bug fixes
- Avoid infinite loop for custom curves of order 1.
- Found and reported with a reproducer by Hanno Boeck.
- Helpful comments and analysis from David Benjamin.
- Avoid infinite loop on parsing DSA private keys.
- Issue reported with reproducers by Hanno Boeck.
- Additional variants and analysis by David Benjamin.
- A malicious certificate can cause an infinite loop.
- Reported by and fix from Tavis Ormandy and David Benjamin, Google.
- In some situations, the verifier would discard the error on an
unvalidated certificate chain.
This would happen when the verification callback was in use,
@@ -1095,7 +1086,6 @@
the privilege separation monitor. Privilege separation has been
enabled by default in since openssh-3.2.2 (released in 2002) and
has been mandatory since openssh-7.5 (released in 2017).
- Thanks to Malcolm Stagg for finding and reporting this bug.
Potentially incompatible changes