===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.397
retrieving revision 1.398
diff -c -r1.397 -r1.398
*** www/plus.html 1999/02/16 06:51:18 1.397
--- www/plus.html 1999/02/16 06:52:23 1.398
***************
*** 58,69 ****
Merge changes from db.1.86 (but do not merge new hash code, since it has an incompatible format)
Handle kernel malloc() failing, for TCP SACK block allocation.
Do more careful system call range-checking and introduce socklen_t.
! FUNCTIONALITY FIX: Fix a bug we introduced before 2.4 shipped: readv(2) and writev(2) with iov_len == 0 is legal.A patch is available.
Fix a pcmcia mapping bug regarding address space allocation.
For wds(4) and ex(4) drivers, unmap address space if probing fails.
In ipsecadm(8), verify that keys and IVs are specified in hex.
Document that MD4 is pretty much broken, and MD5 is looking pretty bad too (so much for quality designs from RSA).
! SECURITY ISSUE: i386 T_TRCTRAP DDB handling could cause a system crash.A patch is available.
tcpdump(8) out-of-range access in LLC decoding.
Flesh out the vpn(8) manpage.
Add old dbm-compatible interface code, from db-1.86
--- 58,69 ----
Merge changes from db.1.86 (but do not merge new hash code, since it has an incompatible format)
Handle kernel malloc() failing, for TCP SACK block allocation.
Do more careful system call range-checking and introduce socklen_t.
! FUNCTIONALITY FIX: Fix a bug we introduced before 2.4 shipped: readv(2) and writev(2) with iov_len == 0 is legal. A patch is available.
Fix a pcmcia mapping bug regarding address space allocation.
For wds(4) and ex(4) drivers, unmap address space if probing fails.
In ipsecadm(8), verify that keys and IVs are specified in hex.
Document that MD4 is pretty much broken, and MD5 is looking pretty bad too (so much for quality designs from RSA).
! SECURITY ISSUE: i386 T_TRCTRAP DDB handling could cause a system crash. A patch is available.
tcpdump(8) out-of-range access in LLC decoding.
Flesh out the vpn(8) manpage.
Add old dbm-compatible interface code, from db-1.86
***************
*** 75,81 ****
ncurses-4.2-990206
Correct various freebsd/linux emulation issues.
Correct directory entry reads for numerous binary emulators.
! SECURITY ISSUE: Better RST handling in tcp input.A patch is available.
BeOS/i386 support in fdisk(8).
Two more nop instructions in sparc locore.s for greater reliability on Viking CPUs.
Pluralization fix in rup(1).
--- 75,81 ----
ncurses-4.2-990206
Correct various freebsd/linux emulation issues.
Correct directory entry reads for numerous binary emulators.
! SECURITY ISSUE: Better RST handling in tcp input. A patch is available.
BeOS/i386 support in fdisk(8).
Two more nop instructions in sparc locore.s for greater reliability on Viking CPUs.
Pluralization fix in rup(1).
***************
*** 736,742 ****
Make getty(8) default to 8 bit mode.
Autodetect ATAPI cdrom drives that do not support ATAPI_READ_CD_CAPACITY.
The following patch was deleted later, ignore it: If a process is being ptraced, do not permit execution of an immutable binary, also, if a process is running an immutable binary, do not permit ptrace. This can be a security issue. A patch is available which fixes this problem.
! Various fixes to the i386 pctr(4) driver -- previously any user could crash most non-Intel processors.Fixes for 2.2 and 2.3 are detailed here.
Various new smtpd(8) fixes.
Change all modifications of struct sigaction's sa_mask field to use sigsetops(3).
Teach adduser(8) about the /sbin/nologin shell.
--- 736,742 ----
Make getty(8) default to 8 bit mode.
Autodetect ATAPI cdrom drives that do not support ATAPI_READ_CD_CAPACITY.
The following patch was deleted later, ignore it: If a process is being ptraced, do not permit execution of an immutable binary, also, if a process is running an immutable binary, do not permit ptrace. This can be a security issue. A patch is available which fixes this problem.
! Various fixes to the i386 pctr(4) driver -- previously any user could crash most non-Intel processors. Fixes for 2.2 and 2.3 are detailed here.
Various new smtpd(8) fixes.
Change all modifications of struct sigaction's sa_mask field to use sigsetops(3).
Teach adduser(8) about the /sbin/nologin shell.
***************
*** 1845,1851 ****
www@openbsd.org
!
$OpenBSD: plus.html,v 1.397 1999/02/16 06:51:18 deraadt Exp $