===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.1339
retrieving revision 1.1340
diff -c -r1.1339 -r1.1340
*** www/plus.html 2014/05/15 01:50:37 1.1339
--- www/plus.html 2014/05/25 01:37:53 1.1340
***************
*** 1,5 ****
-
-
--- 1,3 ----
***************
*** 76,81 ****
--- 74,138 ----
+
+ - Updated run(4) firmware to version 0.33.
+
- Made mkuboot(8) correctly handle files smaller than an elf(5) header.
+
- In ssl(3) ssl3_send_certificate_request(), properly adjust for payload size.
+
- Upon error, made sure ssl(3) ssl3_setup_buffers() frees pqueue before returning.
+
- Fixed tail packet check in pms(4) elantech v3 touchpad code.
+
- Stopped dhclient(8) adding a lease to the leases TAILQ more than once. Avoids infinite loop.
+
- Updated to libXfont 1.4.8.
+
- Check ssl(3) bio_err initialisation succeeds before using it.
+
- Updated to fontconfig 2.11.1.
+
+
- Updated to xf86-input-synaptics 1.8.0.
+
- Fixed kernel build when ehci(4) uses EHCI_DEBUG.
+
- Switched ssl(8) RSA key generation default to 2048 bits (matching ssh(1)).
+
- Made qla(4) less likely to get stuck looping when the firmware behaves inconsistently.
+
- Change interrupt handler's return value to 0 when nothing is processed on pcexmem(4/luna88k).
+
- When pfctl(8) is parsing a numerical value for the TOS bits, ensure it is in a valid range.
+
+
- Fixed mountd(8): when a host in a netgroup is unresolvable, don't ignore entire netgroup.
+
- Sped up signify(1) -C.
+
- Made df(1) do calculations of available space the same way as ffs_statfs() does.
+
- Improved logging messages and style for snmpd(8).
+
- Don't put a link-layer address on the per-ifp lists or RB-Tree. Improves address lookups.
+
+
- Fixed memory leaks in ssl(3) asn1 upon failure.
+
- Replaced ssl(3) ASN1_GENERALIZEDTIME_adj(), ASN1_UTCTIME_adj() and ASN1_TIME_to_generalizedtime() with wrappers.
+
- Added a ChaCha20-Poly1305 AEAD EVP implementation to ssl(3) libcrypto.
+
- Added an AEAD EVP interface to ssl(3) libcrypto, along with AES-GCM AEAD implementations.
+
- Made signify(1) -C mode work again.
+
+
- rtadvd(8) now ignores route info messages on the listening side.
+
- Stopped flushing streams on abort(3), which was unsafe.
+
- Removed arch-specific lo(4) MTU and set to 32768 everywhere.
+
- Made signify(1) recode base64 hashes if necessary; spell out base64 in error messages.
+
- Better use of realloc(3), to speed up signify(1) checksum verification.
+
- Added poly1305 to ssl(3), utilising Andrew Moon's public domain implementation.
+
+
- tmux(1) no longer allows multiple buffers with the same name.
+
- 5.4, 5.5 and -current SECURITY FIX: integer, memory and buffer overflows in libXfont (CVE-2014-0209; CVE-2014-0210 and CVE-2014-0211).
+
- Fixed regression in r1.285 of sys/net/if.c (TAILQ corruption where rdomain was not switched).
+
- In iked(8), pass SA initiator (not the exchange initiator) to sa_address().
+
- The resolver now skips incomplete entries in /etc/hosts and /etc/networks (rather than crash).
+
- Pass multi-argument tmux(1) commands directly to execvp(3). Helps avoid quoting problems.
+
- Added a copy mode key binding to copy to a named tmux(1) buffer.
+
- Added tmux(1) support for named buffers.
+
+
- Fixed multiple bugs in ncheck_ffs(8) handling of indirect blocks.
+
- Updated drm(4) to libdrm 2.4.54.
+
- Fixed ntpd(8) format strings involving time_t arguments. Fixes ntpd(8) -d on sparc.
+
- Moved GTT management for Sandy Bridge into inteldrm(4).
+
- Removed AES_bi_ige_encrypt() from ssl(3).
+
- Removed md5crypt from crypt(3).
+
- Moved the ohash functions into libutil.
+
- Stopped dhclient(8) exiting when sent RTM_NEWADDR or RTM_DELADDR routing messages lacking appropriate address info.
+
- Altered usbhidctl(1) and usbhidaction(1) parsers to keep in sync with the kernel HID parser.
+
- Fixed possible smtpd(8) double free when tls is required but not advertised by the server.
+
- Updated the HID parser to properly parse modern input device descriptors.
+
- Added router alert option (RAO) in IGMP packets (per RFC2236), needed by some L3 switches.
+
- More intelligent parsing of WEP keys by ifconfig(8).
- Make sure uhub(4) root hub is re-attached before interrupts get enabled. Unbreaks resume.
- Stop ignoring "lease" statements in dhclient.conf(5).
***************
*** 652,658 ****
-
-
--- 709,713 ----