===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.672
retrieving revision 1.673
diff -u -r1.672 -r1.673
--- www/plus.html 2000/10/22 01:44:49 1.672
+++ www/plus.html 2000/10/24 10:08:42 1.673
@@ -48,16 +48,120 @@
OpenBSD 2.7 released (June 15, 2000).
We are working on OpenBSD-current.
-- Workaround i386 bios serial call problem.
- [Applied to stable]
- - SECURITY FIX: Apache mod_rewrite and
+
- Solve some of the powerpc data fault issues.
+
- Many more vax improvements.
+
- Fix hifn(4) on very fast machines, like p3/933.
+
- Fix alignment fault in ssh(1).
+
- Many documentation cleanups.
+
- Use clearerr(3) in disklabel(1) so that ^D works in aborts.
+
- Update to ncurses 5.2
+
- Fix noprint/print/octal options in vi(1).
+
- Add support for i815 motherboards and their devices.
+
- Disable DMA support for Opti pciide(4) devices, since there are some boards that apparently wired them up wrong...
+
- Use echo(1) instead of printf(1) to repair the format string bugs in /etc/security
+
- Do not free an uninitialized variable in curses(3).
+
- Switch to 2.8 release numbering.
+
- Print powerpc MHz ratings.
+
- Add support for major/minor numbers to powerpc shared library implementation.
+
- Support ulpt(4) printers on powerpc.
+
- Fix random(4) ioctl functions, to work as intended.
+
- Fix -fpack-struct bug in i386 boot blocks.
+
- Support random number generators on more Intel pchb(4) devices.
+
- tcpdump(8) support for STP (spanning tree) packets.
+
- Discover correct ethernet address for powerpc gm(4) ethernet driver.
+
- Fix nasty dl_strcmp() bug in powerpc ld.so(1).
+
- Generate proper /etc/resolv.conf files from dhclient(8).
+
- Repair quotas greater than 4GB in quota(1).
+
- SECURITY FIX: httpd(8) mod_rewrite and
mod_vhost_alias modules could expose files on server if used.
A patch is available.
[Applied to stable]
-
- - Lots more stuff missing in the middle...
-
+
- More cool vax stuff.
+
- In perl(1), set siteprefix and siteprefixexp to /usr/local as they should be.
+
- Give bridge(4) devices their own IFT_BRIDGE type, so that IPv6 does not attempt to configure up.
+
- Repair a short read issue in scp(1).
+
- For i386 apm(4), if periodic checking fails repeatedly, shut it down.
+
- Very amusing printf(1)-based format string bugs in /etc/security.
+
- Prevent vlan(4) status changes until configuration is complete.
+
- Workaround i386 bios serial call problem (helps DSR issues on some BIOS).
+ [Applied to stable]
+ - Better error message out of ftp(1) regarding invalid port numbers.
+
- Repair certain copyout() calls in bridge(4).
+
- New amphy(4) driver, replacing dmphy(4).
+
- Update tx(4) driver.
+
- Authentication support in ray(4).
+
- Fix file descriptor leak in ssl(3).
+
- isakmpd update.
+
- Fix byte order bug in ipsecadm(8).
+
- Fix httpd(8) building for gcc -shared.
+
- On i386, build a private descriptor for bios32 accesses, thus fixing even more pcibios(4) bugs.
+
- Fix channel printing for pciide(4).
+
- Repair probe vs attach confusion in the mii(4) layer.
+
- In pcibios(4), protect %edx register from being whacked.
+
- Update nearly entire isp(4) device driver.
+
- Update isp(4) sbus microcode.
+
- Various small fixes to moused(8) to make it more reliable.
+
- Enable gm(4) ethernet driver on G4-style powerpc machines.
+
- Lots of documentation improvements.
+
- Repair gcc(1) shared library linking on powerpc.
+
- Fix an uninitialized variable issue in xl(4) that prevented dual NICs from working.
+
- Repair empty password support in login(1), for when kerberos is compiled in.
+
- The 3c556 MiniPCI cards now work in the xl(4) driver.
+
- Fix key option handling in sshd(8).
+
- sshd(8) implementation of AllowTcpForwarding.
+
- For ipsec(4), an ASKPOLICY message implementation in pfkeyv2.
+
- TCP wrapper support for IPv6.
+
- Vax support in ssl(3).
+
- Fix a library buffer overflow in the X11 libraries.
+
- Build a minimal powerpc CD boot image.
+
- In sshd(8), rijndael/aes support in SSH2 protocol.
+
- Fix -i handling in wicontrol(8) and ancontrol(8).
+
- In sshd(8), a kludge for F-Secure Macintosh < 1.0.2.
+
- Add lmccontrol(8) and spppcontrol(8).
+
- Fix TM_YEAR_BASE issue in touch(1).
+
- More isakmpd(8) updates.
+
- setenv(3) cleanups in make(1).
+
- Change powerpc crt0 startup code to deal with ctors/dtors properly.
+
- New aue(4) supplies support for the usb(4) Kingston KNU101TX USB Ethernet adapter.
+
- Some more DELAY() calls in hifn(4) permits some fast machines to work better.
+
- Avoid a nasty mbuf sharing case in ip_forward().
+
- Nuke old timeout code in mii(4) drivers, which collided with new timeout code in the same blocks.
+
- Many manual page cleanups.
+
- Change /root to be mode 0700 instead of 0755.
+
- Enable DES support in SSH1 protocol clients (for compat with exported Cisco routers).
+
- Fix numerous erroneos mmap(3) calls in the source tree.
+
- Fix cc -shared issues in perl(1).
+
- Fix scan code bug in pcvt(4) that prevented RIGHT_SHIFT+PGUP/DN key combinations from activating scrollback.
+
- New cipher framework in sshd(8).
+
- Add support for s/key (kbd-interactive) support in sshd(8) SSH2 protocol.
+
- Implement -o support in scp(1).
+
- Use terminfo(5) interfaces in tn3270(1).
+
- In dc(4), fix ethernet address reading on ADMtek AN983.
+
- In inetd.conf(5), disable talkd(8) and fingerd(8) by default.
+
- Nuke IPv4 mapped address support in IPv6.
+
- Implement diffie-hellman group exchange in ssh(1) and sshd(8).
+
- Add mkhybrid(8) [need this for the powerpc port HFS CD].
+
- Deal with KA52/53 in vax port, and other vax stuff.
+
- Add /etc/primes, used for diffie-hellman key exchange.
+
- Link telnetd(8) and telnet(1) against curses(3) instead of ocurses(3).
+
- Correct environment variable handling in curses(3) library.
+
- fd_set overflow handling in curses(3) library.
+
- ICMP and RST rate limitation code, controlled using sysctl(8) on net.inet.icmp.errppslimit, net.inet6.icmp6.errppslimit, and net.inet.tcp.rstppslimit.
+
- ppsratecheck(9) code added.
+
- Alpha portability for routed6(8).
+
- SECURITY FIX: Prune more environment variables in telnetd(8).
+ A patch is available.
+ [Applied to stable]
+ - Avoid fd_set overflow in kerberos(8) and identd(8).
+
- RELIABILITY FIX: Repair non-exploitable buffer overflow in sendmail(8).
+ A patch is available.
+ [Applied to stable]
+ - libkeynote update.
+
- isakmpd(8) update.
+
- In login.conf(5), crank maxproc for staff login class.
+
- In dump(8), do not dump core if the raw device cannot be determined.
- More vax fixes.
+
- In ppp(8), try to deal with bugs in pppoe(8).
- Permit install time passwords to contain meta-characters.
- AES support in ipsec(4).
- Uninitialized variable in bridge(4).
@@ -289,12 +393,8 @@
- Fix auth-only mode in ubsec(4).
- In hifn(4), deallocate resources on error and workaround memory problems in rev A boards.
- mod_ssl 2.6.6.
-
- fix locking in threaded getgrent(3)
[Applied to stable]
-
- - ... about 3 months of missing updates here..
-
- gdt(4) cache fixes and additional card support
[Applied to stable]
- SECURITY ISSUE: several DoS holes in libX11, libICE and X clients.
@@ -704,7 +804,7 @@
www@openbsd.org
-
$OpenBSD: plus.html,v 1.672 2000/10/22 01:44:49 deraadt Exp $
+
$OpenBSD: plus.html,v 1.673 2000/10/24 10:08:42 deraadt Exp $