version 1.1356, 2014/10/03 09:27:34 |
version 1.1357, 2014/10/10 03:45:00 |
|
|
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<!-- 2014/10/05 --> |
|
<li>Check object allocation for success before using it in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> v3_cpols.c. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>, fixed memory leaks in the error path of v2i_AUTHORITY_KEYID() and set_dist_point_name(). |
|
<li>Switched <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&manpath=OpenBSD%20Current&sektion=8&format=html">syslogd(8)</a> from using <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=poll&manpath=OpenBSD%20Current&sektion=2&format=html">poll(2)</a> to libevent. |
|
<li>Updated <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xterm&manpath=OpenBSD%20Current&sektion=1&format=html">xterm(1)</a> to version 311. |
|
<li>Stopped <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xhci&manpath=OpenBSD%20Current&sektion=4&format=html">xhci(4)</a> Intel Series 7 controllers reporting illegal context state transition when detaching devices. |
|
<!-- 2014/10/04 --> |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ftp&manpath=OpenBSD%20Current&sektion=1&format=html">ftp(1)</a>, only pass the remote host name (not any ":portnumber" suffix) to ressl_connect_socket(). |
|
<li>Forced <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> to strip any empty BCC header in the DATA part of the SMTP transaction. |
|
<!-- 2014/10/03 --> |
|
<li>Cleaned up the reporting socket code in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&manpath=OpenBSD%20Current&sektion=8&format=html">syslogd(8)</a>. |
|
<li>Introduced a thread for zeroing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=uvm&manpath=OpenBSD%20Current&sektion=9&format=html">uvm(9)</a> pages without holding the kernel lock, to reduce latency. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslog_r&manpath=OpenBSD%20Current&sektion=3&format=html">syslog_r(3)</a>, strip trailing newlines from syslog messages, to avoid empty lines when printing. |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> to disable hostname and certificate verification separately. |
|
<li>Enabled automatic handling of ephemeral EC keys by <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>Allowed many code paths in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=myx&manpath=OpenBSD%20Current&sektion=4&format=html">myx(4)</a> to run without the kernel lock. |
|
<!-- 2014/10/02 --> |
|
<li>Now that <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pool&manpath=OpenBSD%20Current&sektion=9&format=html">pool(9)</a> are mpsafe, made the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mbuf&manpath=OpenBSD%20Current&sektion=9&format=html">mbuf(9)</a> allocators on top of pools mpsafe too. |
|
<li>Fixed a crash when there is text after a failed %Z conversion in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strptime&manpath=OpenBSD%20Current&sektion=3&format=html">strptime(3)</a>. |
|
<li>When no domain is specified in MAIL FROM or RCPT TO, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> now assumes local user. |
|
<li>Fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&manpath=OpenBSD%20Current&sektion=8&format=html">httpd(8)</a> endless event loop that could eat all CPU time. |
|
<li>Added local subnet route (RFC 3442) support to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&manpath=OpenBSD%20Current&sektion=8&format=html">dhclient(8)</a>. |
|
<li>Enlarged columns for 4-byte ASN display with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpctl&manpath=OpenBSD%20Current&sektion=8&format=html">bgpctl(8)</a> "show summary" output. |
|
<li>Fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=route&manpath=OpenBSD%20Current&sektion=4&format=html">route(4)</a> so <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=arp&manpath=OpenBSD%20Current&sektion=8&format=html">arp(8)</a> will no longer report an incomplete entry for lo0. |
|
<li>Made <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> take account of window-status-separator when checking window position. |
|
<li>Update status when a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> pane is selected with a mouse. |
|
<!-- 2014/10/01 --> |
|
<li>Always call <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=waitpid&manpath=OpenBSD%20Current&sektion=2&format=html">waitpid(2)</a> on SIGCHLD when client_attached is set in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a>. Avoids potential zombie. |
|
<li>Fixed some incorrect format specifiers in a debug <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=printf&manpath=OpenBSD%20Current&sektion=9&format=html">printf(9)</a> in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apm&manpath=OpenBSD%20Current&sektion=8&format=html">apm(8)</a>. |
|
<li>Fixed loopback related breakage introduced by the conversion of in_ouraddr() to use the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=route&manpath=OpenBSD%20Current&sektion=4&format=html">route(4)</a> table. |
|
<li>Map out-of-range facility values to LOG_USER to avoid array over-read in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&manpath=OpenBSD%20Current&sektion=8&format=html">syslogd(8)</a>. |
|
<li>No longer define default_bits in openssl.cnf. Allows the compiled-in default to take priority. |
|
<li>Switched <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=openssl&manpath=OpenBSD%20Current&sektion=1&format=html">openssl(1)</a> "req" command to using SHA256 (hashes) and AES256 (on-disk keys) by default. |
|
<li><font color="#e00000">5.6 RELIABILITY FIX: Fixed some <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=run&manpath=OpenBSD%20Current&sektion=4&format=html">run(4)</a> devices working in 5.5 but not in 5.6-release.</font> |
|
<li>More optimisations of luna frame buffer. Makes 4bpp <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wscons&manpath=OpenBSD%20Current&sektion=4&format=html">wscons(4)</a> putchar ~8% faster on luna88k. |
|
<li>Unhooked <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sliplogin&manpath=OpenBSD%20Current&sektion=8&format=html">sliplogin(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sl&manpath=OpenBSD%20Current&sektion=4&format=html">sl(4)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=slstats&manpath=OpenBSD%20Current&sektion=8&format=html">slstats(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=slattach&manpath=OpenBSD%20Current&sektion=8&format=html">slattach(8)</a>. |
|
<li>Check speed of a new device does not exceed parent's speed prior to calling usbd_new_device(). |
|
<!-- 2014/09/30 --> |
|
<li><font color="#e00000">5.4, 5.5 and 5.6 SECURITY FIX: Stopped nginx (in base) reusing cached <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> sessions in unrelated contexts (CVE-2014-3616).</font><br>A source code patch is available for <a href="errata54.html#055_nginx">5.4</a>, <a href="errata55.html#011_nginx">5.5</a> and <a href="errata56.html#003_nginx">5.6</a>. |
|
<li>Added support for "physical devices" to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mfii&manpath=OpenBSD%20Current&sektion=4&format=html">mfii(4)</a>. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>, cleaned up EC cipher handling in ssl3_choose_cipher(). |
|
<li>Prevented <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dmesg&manpath=OpenBSD%20Current&sektion=8&format=html">dmesg(8)</a> spam from some windows-only keys (found on very new thinkpads). |
|
<li>Do not use the global list of IPv4 addresses in icmp_reflect(), use the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=route&manpath=OpenBSD%20Current&sektion=4&format=html">route(4)</a> table. |
|
<!-- 2014/09/29 --> |
|
<li>Increased text segment size on arm to 32MB. |
|
<li>When setting <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=env&manpath=OpenBSD%20Current&sektion=1&format=html">env(1)</a> in an <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=at&manpath=OpenBSD%20Current&sektion=1&format=html">at(1)</a> atrun script, use the "export foo=bar" form. Allows shell to catch variable names that are not valid shell identifiers. |
|
<li>Fixed r1.12 of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> x509_att.c which had a NULL pointer dereference in the error path. |
|
<li>Added option that allows any enabled <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> protocols to be explicitly configured. |
|
<li>Use raster operation (ROP) function on luna frame buffer. 4bpp <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wscons&manpath=OpenBSD%20Current&sektion=4&format=html">wscons(4)</a> putchar now ~20% faster. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vds&manpath=OpenBSD%20Current&sektion=4&arch=sparc64&format=html">vds(4/sparc64)</a> now supports block devices. |
|
<li>Reversion fixed in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a>, which had broken table_passwd. |
<!-- 2014/09/28 --> |
<!-- 2014/09/28 --> |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> check_cert(), reset ctx->current_crl to NULL before freeing it. |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> check_cert(), reset ctx->current_crl to NULL before freeing it. |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> X509_NAME_get_text_by_OBJ(), made sure we do not pass a negative size to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=memcpy&manpath=OpenBSD%20Current&sektion=3&format=html">memcpy(3)</a>. |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> X509_NAME_get_text_by_OBJ(), made sure we do not pass a negative size to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=memcpy&manpath=OpenBSD%20Current&sektion=3&format=html">memcpy(3)</a>. |
|
|
|
|
</body> |
</body> |
</html> |
</html> |
|
|
|
|
|
|
|
|
|
|