version 1.265, 1998/05/15 14:18:34 |
version 1.266, 1998/05/17 20:13:47 |
|
|
<li>Fix a bunch of scanf related buffer overflows. |
<li>Fix a bunch of scanf related buffer overflows. |
<li>Compile the system with <strong>-O2</strong> instead of <strong>-O</strong>. |
<li>Compile the system with <strong>-O2</strong> instead of <strong>-O</strong>. |
<li>Start cron at the end of /etc/rc to avoid some security issues. |
<li>Start cron at the end of /etc/rc to avoid some security issues. |
|
<li>Correct 64 bit timeval storage in ping(8) packets; also put the time in |
|
network byte order. |
|
<li>In mount_nfs(8), contact the portmapper about the correct protocol (tcp or udp). |
|
<li>Fix buffer overflows in getNAME(1). |
|
<li>Fix acct(2) to work with append-only files. |
|
<li>Fix a memory trashing bug in the IPSEC SPI chain delete function. |
|
<li>Fix a free() related bug in csh(1). |
|
<li><font color=#e00000><strong>Constrain how kill(2) operates against target |
|
processes that are running setuid. The previous unrestricted |
|
behaviour may have had security consequences. |
|
<a href=errata.html#kill>A patch exists which solves the |
|
problem</a></strong></font>. |
|
<li>In gdb, do not use 4.3 compatibility tty ioctl() calls. |
</ul> |
</ul> |
|
|
<a name=end></a> |
<a name=end></a> |