===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/74.html,v
retrieving revision 1.15
retrieving revision 1.16
diff -u -r1.15 -r1.16
--- www/74.html 2023/10/10 22:35:56 1.15
+++ www/74.html 2023/10/10 23:19:35 1.16
@@ -138,9 +138,9 @@
Replace strncpy() with strlcpy() in mg(1).
Skip checking permissions of conffile with access(2).
- On aarch64 architectures improve how BTI control flow integretry
+ On aarch64 architectures improve how BTI control flow integrity
enforcement is implemented in the executable entry point and enable
- support for BTI control flow integrety checks in libc assembly
+ support for BTI control flow integrity checks in libc assembly
functions.
@@ -213,7 +213,7 @@
Security improvements:
- - Change malloc(3) chunk sizes to be fine grained. [needs better explaination]
+
- Change malloc(3) chunk sizes to be fine grained. [needs better explanation]
- In malloc(3), check all chunks in the delayed free list for write-after-free.
@@ -234,10 +234,10 @@
- In isakmpd(8), avoid a double free in ec_init() when using the OpenSSL API.
- In iked(8), do not treat the return value of i2d_ECDSA_SIG() as
- lenght as it can be negative.
+ length as it can be negative.
- Prepare isakmpd(8) for a libcrypto library that is lacking binary field
support.
-
- In isakmpd(8), avoid a potential crash by addind a missing NULL check.
+
- In isakmpd(8), avoid a potential crash by adding a missing NULL check.
In bgpd(8),
@@ -546,10 +546,10 @@
sshd(8),
ssh(1),
ssh-keygen(1):
- remove vestigal support for KRL
+ remove vestigial support for KRL
signatures When the KRL format was originally defined, it included
support for signing of KRL objects. However, the code to sign KRLs
- and verify KRL signatues was never completed in OpenSSH. This
+ and verify KRL signatures was never completed in OpenSSH. This
release removes the partially-implemented code to verify KRLs.
All OpenSSH tools now ignore KRL_SECTION_SIGNATURE sections in
KRL files.
@@ -582,7 +582,7 @@
the resultant file would be erroneously truncated.
ssh(1):
don't incorrectly disable hostname canonicalization when
- CanonicalizeHostname=yes and ProxyJump was expicitly set to
+ CanonicalizeHostname=yes and ProxyJump was explicitly set to
"none".
scp(1):
when copying local to remote, check that the source file