===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.354
retrieving revision 1.355
diff -c -r1.354 -r1.355
*** www/plus.html 1998/11/11 16:31:35 1.354
--- www/plus.html 1998/11/11 23:59:56 1.355
***************
*** 326,332 ****
Update to ncurses-4.2-980801.
Use SO_REUSEADDR in lpd(8) in case it is restarted by hand.
Crank tun(4) MTU to 16K.
! Set the close-on-exec flag in two descriptors owned by chpass(8). This fixes a security problem. A patch which solves the problem is available.
Improve ipsecadm(8).
Fix some ipsec bugs related to IP-in-IP.
Fix some disklabel(8) bugs.
--- 326,332 ----
Update to ncurses-4.2-980801.
Use SO_REUSEADDR in lpd(8) in case it is restarted by hand.
Crank tun(4) MTU to 16K.
! Set the close-on-exec flag in two descriptors owned by chpass(8). This fixes a security problem. A patch which solves the problem is available.
Improve ipsecadm(8).
Fix some ipsec bugs related to IP-in-IP.
Fix some disklabel(8) bugs.
***************
*** 334,340 ****
Make dump(8) work against filesystems not listed in fstab(5).
Rename libtelnet functions getent and getstr to avoid curses conflicts.
Disable all ISA PNP devices before doing the ISA scan. This works around BIOS's which pre-map ISA PNP devices into known locations.
! Correct panics and EINVAL returning cases in iovec using code. A patch for this problem exists.
Fix battery remaining support in i386 apm.
Add i386 apm(4) manpage.
Fix mkstemp() calling code in libc/db/hash.
--- 334,340 ----
Make dump(8) work against filesystems not listed in fstab(5).
Rename libtelnet functions getent and getstr to avoid curses conflicts.
Disable all ISA PNP devices before doing the ISA scan. This works around BIOS's which pre-map ISA PNP devices into known locations.
! Correct panics and EINVAL returning cases in iovec using code. A patch for this problem exists.
Fix battery remaining support in i386 apm.
Add i386 apm(4) manpage.
Fix mkstemp() calling code in libc/db/hash.
***************
*** 375,388 ****
Update to Lite2 getenv(), which returns NULL for getenv(NULL).
Fix a problem with the PCI ncr(4) driver if many scsi devices were in use.
Improve db cache sizing heuristic in pwd_mkdb(8).
! Close a file descriptor leak in inetd(8). A patch which solves the problem is available.
Fix dump(8) to return exit code 1 for startup failures, as documented.
Improve performance of getpwent(3) in a YP environment.
Improve performance of pwd_mkdb(8).
More buffer overflow fixes in libpcap and such.
Fix "mount /mnt /mnt" so that it does not panic the machine.
cvs 1.9.28.
! Fix locking code in unionfs. This fixes a serious problem in unionfs. A patch is available.
In ftpd, handle non-existant users as login now does -- sleep a while.
In the S3 audio driver, map additional registers at open() time instead of attach() time.
Use SEEK_SET and friends instead of L_SET and such, throughout the tree.
--- 375,388 ----
Update to Lite2 getenv(), which returns NULL for getenv(NULL).
Fix a problem with the PCI ncr(4) driver if many scsi devices were in use.
Improve db cache sizing heuristic in pwd_mkdb(8).
! Close a file descriptor leak in inetd(8). A patch which solves the problem is available.
Fix dump(8) to return exit code 1 for startup failures, as documented.
Improve performance of getpwent(3) in a YP environment.
Improve performance of pwd_mkdb(8).
More buffer overflow fixes in libpcap and such.
Fix "mount /mnt /mnt" so that it does not panic the machine.
cvs 1.9.28.
! Fix locking code in unionfs. This fixes a serious problem in unionfs. A patch is available.
In ftpd, handle non-existant users as login now does -- sleep a while.
In the S3 audio driver, map additional registers at open() time instead of attach() time.
Use SEEK_SET and friends instead of L_SET and such, throughout the tree.
***************
*** 449,459 ****
Fix fxp driver so that it works on buggy cards.
In make(1), fix bug for targets that began with "." and underwent suffix conversion.
Fix "mv b/ a" for the case when "a" is a directory.
! Ensure setuid and setgid processes are not started with fd slots 0, 1, or 2 empty. The previous behaviour has security consequences. A patch which solves the problem is available.
In man(1), when a man page cannot be found in a specified section, indicate which section the failure happened in.
Add new strlcpy(3) and strlcat(3) interfaces for simple bounded string copies.
Add new mkstemps(3) interface which is basically mkstemp(3) but with suffix support.
! Fix LED update lockup bugs in the i386 console driver (pcvt). A patch is available which fixes this problem.
Further improvements to photurisd(8).
Fix kvm_read(3) return values.
Overflow fix in ksh(1).
--- 449,459 ----
Fix fxp driver so that it works on buggy cards.
In make(1), fix bug for targets that began with "." and underwent suffix conversion.
Fix "mv b/ a" for the case when "a" is a directory.
! Ensure setuid and setgid processes are not started with fd slots 0, 1, or 2 empty. The previous behaviour has security consequences. A patch which solves the problem is available.
In man(1), when a man page cannot be found in a specified section, indicate which section the failure happened in.
Add new strlcpy(3) and strlcat(3) interfaces for simple bounded string copies.
Add new mkstemps(3) interface which is basically mkstemp(3) but with suffix support.
! Fix LED update lockup bugs in the i386 console driver (pcvt). A patch is available which fixes this problem.
Further improvements to photurisd(8).
Fix kvm_read(3) return values.
Overflow fix in ksh(1).
***************
*** 501,508 ****
Various fixes to ftp(1).
Make getty(8) default to 8 bit mode.
Autodetect ATAPI cdrom drives that do not support ATAPI_READ_CD_CAPACITY.
! The following patch was deleted later, ignore it: If a process is being ptraced, do not permit execution of an immutable binary, also, if a process is running an immutable binary, do not permit ptrace. This can be a security issue. A patch is available which fixes this problem.
! Various fixes to the i386 pctr(4) driver -- previously any user could crash most non-Intel processors.Fixes for 2.2 and 2.3 are detailed here.
Various new smtpd(8) fixes.
Change all modifications of struct sigaction's sa_mask field to use sigsetops(3).
Teach adduser(8) about the /sbin/nologin shell.
--- 501,508 ----
Various fixes to ftp(1).
Make getty(8) default to 8 bit mode.
Autodetect ATAPI cdrom drives that do not support ATAPI_READ_CD_CAPACITY.
! The following patch was deleted later, ignore it: If a process is being ptraced, do not permit execution of an immutable binary, also, if a process is running an immutable binary, do not permit ptrace. This can be a security issue. A patch is available which fixes this problem.
! Various fixes to the i386 pctr(4) driver -- previously any user could crash most non-Intel processors.Fixes for 2.2 and 2.3 are detailed here.
Various new smtpd(8) fixes.
Change all modifications of struct sigaction's sa_mask field to use sigsetops(3).
Teach adduser(8) about the /sbin/nologin shell.
***************
*** 546,552 ****
Install gdb(1) info pages.
New distribution install notes that use m4 instead of cpp for formatting.
In gdb, do not use 4.3 compatibility tty ioctl() calls.
! Constrain how kill(2) operates against target processes that are running setuid. The previous unrestricted behaviour may have had security consequences. The 4th revision of a patch which solves the problem is available.
Fix a free() related bug in csh(1).
Fix a memory trashing bug in the IPSEC SPI chain delete function.
Fix acct(2) to work with append-only files.
--- 546,552 ----
Install gdb(1) info pages.
New distribution install notes that use m4 instead of cpp for formatting.
In gdb, do not use 4.3 compatibility tty ioctl() calls.
! Constrain how kill(2) operates against target processes that are running setuid. The previous unrestricted behaviour may have had security consequences. The 4th revision of a patch which solves the problem is available.
Fix a free() related bug in csh(1).
Fix a memory trashing bug in the IPSEC SPI chain delete function.
Fix acct(2) to work with append-only files.
***************
*** 568,574 ****
Make perl(1) support calls to lockf(3) now that we have it.
Disable dynamic loading in the mips version of perl(1).
Make size(1) work on files created via ld -Z.
! A possible new security problem exists if you rely on securelevels and immutable or append-only files or character devices. The fix does not permit mmap'ing of immutable or append-only files which are otherwise writeable, as the VM system will bypass the meaning of the file flags when writes happen to the file. A patch exists which solves the problem.
Niklas is taking a shot at making our cross compiler toolset sufficient for a full cross compile of the vax port.
Fix a file parsing overflow in kdb_util(8).
Make config(8) store the first free unit number in its tables so that pcmcia device re-insertion can come back to the same unit number.
--- 568,574 ----
Make perl(1) support calls to lockf(3) now that we have it.
Disable dynamic loading in the mips version of perl(1).
Make size(1) work on files created via ld -Z.
! A possible new security problem exists if you rely on securelevels and immutable or append-only files or character devices. The fix does not permit mmap'ing of immutable or append-only files which are otherwise writeable, as the VM system will bypass the meaning of the file flags when writes happen to the file. A patch exists which solves the problem.
Niklas is taking a shot at making our cross compiler toolset sufficient for a full cross compile of the vax port.
Fix a file parsing overflow in kdb_util(8).
Make config(8) store the first free unit number in its tables so that pcmcia device re-insertion can come back to the same unit number.
***************
*** 586,597 ****
Enable #pragma pack and #pragma weak support in gcc.
Fix at least one remotely activated buffer overflow in lynx(1).
Add information about more deviant scsi devices.
! A security issue exists in 2.2 and 2.3. A lacking test for invalid padding length in IPSEC packets can cause a remote attack possibility if IPSEC is in use. A patch exists which solves the problem. (A similar patch exists for OpenBSD 2.2).
Fix a select(3) bug in syslogd(8).
In the hp300 port, use actual code to determine how fast the 68040 cpu is running.
Add libossaudio(3) to the source tree.
In mail(1), do not attempt to remove a mail spool since directory write permission may not exist. Instead, simply truncate it.
! xterm(1) and libXaw contain security issues due to buffer mismanagement. A patch exists which solves the problem. (A similar patch which solves the problem for OpenBSD 2.2 also exists).
Permit relative adjustments in mixerctl(1) using +/- prefixes.
msdosfs in FAT32 mode would hang during a write.
Fix ZIP drive use on the hp300.
--- 586,597 ----
Enable #pragma pack and #pragma weak support in gcc.
Fix at least one remotely activated buffer overflow in lynx(1).
Add information about more deviant scsi devices.
! A security issue exists in 2.2 and 2.3. A lacking test for invalid padding length in IPSEC packets can cause a remote attack possibility if IPSEC is in use. A patch exists which solves the problem. (A similar patch exists for OpenBSD 2.2).
Fix a select(3) bug in syslogd(8).
In the hp300 port, use actual code to determine how fast the 68040 cpu is running.
Add libossaudio(3) to the source tree.
In mail(1), do not attempt to remove a mail spool since directory write permission may not exist. Instead, simply truncate it.
! xterm(1) and libXaw contain security issues due to buffer mismanagement. A patch exists which solves the problem. (A similar patch which solves the problem for OpenBSD 2.2 also exists).
Permit relative adjustments in mixerctl(1) using +/- prefixes.
msdosfs in FAT32 mode would hang during a write.
Fix ZIP drive use on the hp300.
***************
*** 1611,1617 ****
www@openbsd.org
!
$OpenBSD: plus.html,v 1.354 1998/11/11 16:31:35 deraadt Exp $