--- 69,75 ----
***************
*** 93,99 ****
Missing overflow checks in uvm may result in panics.
!
A source code patch exists which remedies this problem.
--- 93,99 ----
Missing overflow checks in uvm may result in panics.
!
A source code patch exists which remedies this problem.
***************
*** 104,110 ****
Fixes IO::Socket::IP complaining about non-numeric version numbers.
!
A source code patch exists which remedies this problem.
--- 104,110 ----
Fixes IO::Socket::IP complaining about non-numeric version numbers.
!
A source code patch exists which remedies this problem.
***************
*** 116,122 ****
Improve relayd's parsing of the Host-header by following RFC 7230
Section 5.4 more strictly.
!
A source code patch exists which remedies this problem.
--- 116,122 ----
Improve relayd's parsing of the Host-header by following RFC 7230
Section 5.4 more strictly.
!
A source code patch exists which remedies this problem.
***************
*** 128,134 ****
A missing initialization can prevent mail headers from being altered as
intended, resulting in mail being sent to incorrect addresses.
!
A source code patch exists which remedies this problem.
--- 128,134 ----
A missing initialization can prevent mail headers from being altered as
intended, resulting in mail being sent to incorrect addresses.
!
A source code patch exists which remedies this problem.
***************
*** 139,145 ****
Limit the number of wscons fonts that can be loaded into the kernel.
!
A source code patch exists which remedies this problem.
--- 139,145 ----
Limit the number of wscons fonts that can be loaded into the kernel.
!
A source code patch exists which remedies this problem.
***************
*** 151,157 ****
During parsing of the iked(8) configuration, a variable is set to 0
by mistake, disabling Pre-Shared Key authentication.
!
A source code patch exists which remedies this problem.
--- 151,157 ----
During parsing of the iked(8) configuration, a variable is set to 0
by mistake, disabling Pre-Shared Key authentication.
!
A source code patch exists which remedies this problem.
***************
*** 163,169 ****
Revert change that cleans up the EVP cipher context in EVP_EncryptFinal()
and EVP_DecryptFinal(). Some software relies on the previous behaviour.
!
A source code patch exists which remedies this problem.
--- 163,169 ----
Revert change that cleans up the EVP cipher context in EVP_EncryptFinal()
and EVP_DecryptFinal(). Some software relies on the previous behaviour.
!
A source code patch exists which remedies this problem.
***************
*** 175,181 ****
Avoid unbounded memory growth in libssl, which can be triggered by a TLS
client repeatedly renegotiating and sending OCSP Status Request TLS extensions.
!
A source code patch exists which remedies this problem.
--- 175,181 ----
Avoid unbounded memory growth in libssl, which can be triggered by a TLS
client repeatedly renegotiating and sending OCSP Status Request TLS extensions.
!
A source code patch exists which remedies this problem.
***************
*** 186,192 ****
Avoid falling back to a weak digest for (EC)DH when using SNI with libssl.
!
A source code patch exists which remedies this problem.
--- 186,192 ----
Avoid falling back to a weak digest for (EC)DH when using SNI with libssl.
!
A source code patch exists which remedies this problem.
***************
*** 197,203 ****
A bug in the smtp session logic can lead to a server crash.
!
A source code patch exists which remedies this problem.
--- 197,203 ----
A bug in the smtp session logic can lead to a server crash.
!
A source code patch exists which remedies this problem.
***************
*** 209,215 ****
Fix a number of issues in the way various X client libraries handle
server responses.
!
A source code patch exists which remedies this problem.
--- 209,215 ----
Fix a number of issues in the way various X client libraries handle
server responses.
!
A source code patch exists which remedies this problem.