=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v retrieving revision 1.1344 retrieving revision 1.1345 diff -c -r1.1344 -r1.1345 *** www/plus.html 2014/06/22 11:11:00 1.1344 --- www/plus.html 2014/06/25 09:26:44 1.1345 *************** *** 75,80 **** --- 75,123 ----

Stopped building procfs on i386. +
In ssl(8) BIO_get_port(), only accept valid port numbers. + +
Made sure uvm(9) kmthread never loops without making progress. +
kill(2) an untraced process (instead of looping) if the kernel generates a deadly trap signal and it is ignored. +
Specify the correct strength bits for 3DES cipher suites in ssl(8). + +
Protect explicit_bzero(3) from a link-time optimisation. +
In ssl(3), wrap getenv(3) OPENSSL_ALLOW_PROXY_CERTS in an issetugid(2) check. Stops setuid(2) applications from being fooled. +
Prefix error messages from mandoc(1) with "mandoc: ", so users know where messages came from. +
Made "S" and "E" mean the start and end to capture-pane in tmux(1). +
Fixed incorrect bounds check in amd64 assembly version of ssl(8) bn_mul_mont(). + +
Made tcpdump(8) -v display any bad checksums contained in the header and what the checksum should be. +
More tweaking of mandoc(1) set_basedir(): do not error out when getcwd(3) fails; fixed the man-root-dir indicator in say(). +
In arc4random(3), hard fail with SIGKILL if getentropy(2) returns -1. +
Converted CRYPTO_memcmp to timingsafe_memcmp in ssl(8). +
Improved error checking in ssl(3) by_dir.c: set error code on error; check malloc(3) return; added missing unlock. +
Fixed memory leak in md5(1) digest_file() on ferror(3). +
Implemented the membar(9) API for powerpc. +
Copy newline when at EOL when tmux(1) is in vi(1) mode. +
Made tmux(1) reset the mouse buttons when the mouse wheel is used. +
Some terminals send spurious releases for mouse wheel in SGR mouse mode, tmux(1) now suppresses these. +
Fixed black screen on lenovo ideapad yoga 2 pro using when using intel(4). + +
Restored previous arc4random(3) behaviour, where fork(2) children would mix in some randomness from the parent process. +
Stopped mandoc(1) displaying "unable to open mandoc.db" error messages when updating/deleting individual files. +
Ensured fsck_msdos(8) will always keep length of cluster chain up to date. Avoids out of boundary accesses. +
Fixed off by one in msdosfs pm_inusemap(). +
Fixed the use of 16384-bit RSA keys by ssh(1). + +
Changed SSL_COMP_add_compression_method() in ssl(8), so error cases actually return "error" rather than "success". +
Disallow __sysctl() in the sshd(8) systrace(1) sandbox (as there is now a dedicated getentropy(2) system call for arc4random(3)). +
Implemented the membar(9) API for hppa. +
Added configuration bit in vio(4) flags, to workaround qemu < 2.0 bug that prevented VLANs from working. +
Be more aggressive flushing L2 cache entries on mips64 RM7000 systems. + +
Set uart based on the io clock rate on octeon II (CN6xxx), as the rate differs from the cpu clock. +
Use MAP_INHERIT_ZERO in arc4random(3), to zero out the RNG state if the process forks. +
Enabled pci(4) power management on lemote. +
Reverted "Always create a local route for every configured IPv4 address" (caused regressions). +
Allow the autoinstaller to fetch sets from multiple locations.
Fixed vnode leak in systrace(4).
In ssl(8) aes_gcm_cleanup(), clean the entire context (no longer leaving AES key untouched). *************** *** 873,875 **** --- 916,923 ---- + + + + +