@@ -29,7 +43,7 @@
changes, starting with those listed below..
-Note: Problems for which patches exist are marked in red.
+Note: Problems for which patches exist are marked in red.
For changes in other releases, click below:
@@ -84,14 +98,14 @@
-
Changes made between OpenBSD 2.5 and 2.6
+
Changes made between OpenBSD 2.5 and 2.6
2.6 source tree frozen.
Merge in some critical ATAPI fixes.
Force FDSCRIPTS.
-
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available.
+
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available.
Separate help(1) command, and a separate help(1) man page.
Move wrapper handling to the child process, in sshd(8).
Various fixes for the bignum and RSA handling code in sshd(8).
@@ -250,7 +264,7 @@
Support "short" mouse protocol for the Tadpole sparc.
More queue.h macros.
In /etc/rc during vi recovery, ensure vi recovery files are normal.
-
Change /etc/rc.shutdown handling, so that /etc/rc.shutdown is completely admin-editable and does not run if in single-user mode. NOTE: If you follow current, this means that people need to install a new /etc/rc file.
+
Change /etc/rc.shutdown handling, so that /etc/rc.shutdown is completely admin-editable and does not run if in single-user mode. NOTE: If you follow current, this means that people need to install a new /etc/rc file.
On sparc, change pagetable pointers using atomic instructions.
Change pmap_enter() API.
Start doing an atoi(3) audit of the tree; most cases should use strtol() and strtoul().
@@ -266,7 +280,7 @@
Fix buf overflow in amd(8).
Support AAA-131CF card in ahc(4) driver.
Check SACK hole validity better, and do sequence space arithmetic better.
-
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
+
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
Some fixes to newsyslog(8).
Disable SACK for now; some issues remain.
Buffer overflow fixes in from(1).
@@ -284,7 +298,7 @@
Crank kerberos default expiration date.
Teach i386 architecture code about Rise CPU models.
Build shared library called libperl.
-
Use new arch -s option for building perl.
+
Use new arch -s option for building perl.
Fix a few possible sparc pmap races.
Make ld.so work on mips again.
Merge machine(1) and arch(1) commands.
@@ -307,7 +321,7 @@
In pcmcia ep(4) driver, support 3CXEM556B-INT.
Remove useless if_ep shutdown hook.
Import USB code.
-
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default.) A patch is available.
+
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default.) A patch is available.
Repair: probe svr4 emulation before linux once again.
Support -M and -N flags in uptime(1).
Detect IDT WinChip models.
@@ -320,7 +334,7 @@
Skip hostname.* files if the interface does not exist.
Make mbuf panic messages unique.
Repair interface walking in rarpd(8).
-
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available.
+
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available.
pcmcia device attach/dettachment code, supporting network and serial devices now.
vdevgone() internal kernel API.
If fread(3) returns EBADF, also set the error flag.
@@ -328,7 +342,7 @@
Split i386 ramdisks up a bit for the next release.
Fix sparc interrupt handler to recognize < 0 from an driver interrupt handler means "interrupt may have been for me, but I am not sure".
isakmpd(8) updates.
-
Add SADB_FLUSH logic to IPSEC PFKEYv2, and a ipsecadm flush subcommand.
+
Add SADB_FLUSH logic to IPSEC PFKEYv2, and a ipsecadm flush subcommand.
Update bktr driver.
Shrink some device drivers; we're trying to make more fit onto the install floppy.
config_defer support in the kernel.
@@ -340,22 +354,22 @@
/tmp race repairs in yacc(1).
Propagate TMPDIR better into locate.updatedb(8).
Kill gzip sub-processes in pax(1) instead of letting them die from SIGPIPE.
-
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available.
+
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available.
Support for 3c515 isapnp 100mbit ethernet card, in ef(4).
Chown/chmod all of the pty devices.
If /etc/fstab is 0-length or not a regular file, have setfsent(3) fail.
Import of mailwrapper(8) into the tree.
Games updated.
-
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available.
+
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available.
New raidframe code.
Make sure install scripts remove async mount conditions before attempting to installboot(8).
-
Have route flush skip PF_KEY flows.
+
Have route flush skip PF_KEY flows.
tcpdump 3.4 merged.
Have pkg_create(1) use tar -T.
Add -T option to tar(1).
Fix fgetln(3) issue in pax(1).
-
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available.
-
If src file does not exist, have mv -i complain immediately.
+
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available.
+
If src file does not exist, have mv -i complain immediately.
Bug fix to pkg_add(8).
More man page cleanups.
Clean dmesg output from various drivers.
@@ -434,7 +448,7 @@
Many man page improvements.
Newer version of isakmpd(8).
Support PAGER properly in pkg_install(8).
-
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available.
+
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available.
Add support for TCP MD5 (RFC 2385) option called TCP_SIGNATURE used for authenticating BGP sessions.
Support SIGUSR1 in init(8), used by i386 keyboard halt code, and make init(8) smart enough to run /etc/rc.shutdown
On i386 pcvt console, have CTRL-ALT-DEL sent a SIGUSR1 to init.
@@ -539,10 +553,10 @@
swapctl(8) and the necessary kernel support.
Longer delay in the i386 pms(4) probe routine, for Thinkpads.