=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v retrieving revision 1.1339 retrieving revision 1.1340 diff -c -r1.1339 -r1.1340 *** www/plus.html 2014/05/15 01:50:37 1.1339 --- www/plus.html 2014/05/25 01:37:53 1.1340 *************** *** 1,5 **** - - --- 1,3 ---- *************** *** 76,81 **** --- 74,138 ----

Updated run(4) firmware to version 0.33. +
Made mkuboot(8) correctly handle files smaller than an elf(5) header. +
In ssl(3) ssl3_send_certificate_request(), properly adjust for payload size. +
Upon error, made sure ssl(3) ssl3_setup_buffers() frees pqueue before returning. +
Fixed tail packet check in pms(4) elantech v3 touchpad code. +
Stopped dhclient(8) adding a lease to the leases TAILQ more than once. Avoids infinite loop. +
Updated to libXfont 1.4.8. +
Check ssl(3) bio_err initialisation succeeds before using it. +
Updated to fontconfig 2.11.1. + +
Updated to xf86-input-synaptics 1.8.0. +
Fixed kernel build when ehci(4) uses EHCI_DEBUG. +
Switched ssl(8) RSA key generation default to 2048 bits (matching ssh(1)). +
Made qla(4) less likely to get stuck looping when the firmware behaves inconsistently. +
Change interrupt handler's return value to 0 when nothing is processed on pcexmem(4/luna88k). +
When pfctl(8) is parsing a numerical value for the TOS bits, ensure it is in a valid range. + +
Fixed mountd(8): when a host in a netgroup is unresolvable, don't ignore entire netgroup. +
Sped up signify(1) -C. +
Made df(1) do calculations of available space the same way as ffs_statfs() does. +
Improved logging messages and style for snmpd(8). +
Don't put a link-layer address on the per-ifp lists or RB-Tree. Improves address lookups. + +
Fixed memory leaks in ssl(3) asn1 upon failure. +
Replaced ssl(3) ASN1_GENERALIZEDTIME_adj(), ASN1_UTCTIME_adj() and ASN1_TIME_to_generalizedtime() with wrappers. +
Added a ChaCha20-Poly1305 AEAD EVP implementation to ssl(3) libcrypto. +
Added an AEAD EVP interface to ssl(3) libcrypto, along with AES-GCM AEAD implementations. +
Made signify(1) -C mode work again. + +
rtadvd(8) now ignores route info messages on the listening side. +
Stopped flushing streams on abort(3), which was unsafe. +
Removed arch-specific lo(4) MTU and set to 32768 everywhere. +
Made signify(1) recode base64 hashes if necessary; spell out base64 in error messages. +
Better use of realloc(3), to speed up signify(1) checksum verification. +
Added poly1305 to ssl(3), utilising Andrew Moon's public domain implementation. + +
tmux(1) no longer allows multiple buffers with the same name. +
5.4, 5.5 and -current SECURITY FIX: integer, memory and buffer overflows in libXfont (CVE-2014-0209; CVE-2014-0210 and CVE-2014-0211). +
Fixed regression in r1.285 of sys/net/if.c (TAILQ corruption where rdomain was not switched). +
In iked(8), pass SA initiator (not the exchange initiator) to sa_address(). +
The resolver now skips incomplete entries in /etc/hosts and /etc/networks (rather than crash). +
Pass multi-argument tmux(1) commands directly to execvp(3). Helps avoid quoting problems. +
Added a copy mode key binding to copy to a named tmux(1) buffer. +
Added tmux(1) support for named buffers. + +
Fixed multiple bugs in ncheck_ffs(8) handling of indirect blocks. +
Updated drm(4) to libdrm 2.4.54. +
Fixed ntpd(8) format strings involving time_t arguments. Fixes ntpd(8) -d on sparc. +
Moved GTT management for Sandy Bridge into inteldrm(4). +
Removed AES_bi_ige_encrypt() from ssl(3). +
Removed md5crypt from crypt(3). +
Moved the ohash functions into libutil. +
Stopped dhclient(8) exiting when sent RTM_NEWADDR or RTM_DELADDR routing messages lacking appropriate address info. +
Altered usbhidctl(1) and usbhidaction(1) parsers to keep in sync with the kernel HID parser. +
Fixed possible smtpd(8) double free when tls is required but not advertised by the server. +
Updated the HID parser to properly parse modern input device descriptors. +
Added router alert option (RAO) in IGMP packets (per RFC2236), needed by some L3 switches. +
More intelligent parsing of WEP keys by ifconfig(8).
Make sure uhub(4) root hub is re-attached before interrupts get enabled. Unbreaks resume.
Stop ignoring "lease" statements in dhclient.conf(5). *************** *** 652,658 **** - - --- 709,713 ----