OpenBSD 2.6 Changelog

=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus26.html,v retrieving revision 1.63 retrieving revision 1.64 diff -u -r1.63 -r1.64 --- www/plus26.html 2019/04/08 16:14:53 1.63 +++ www/plus26.html 2019/05/27 22:55:22 1.64 @@ -1,20 +1,34 @@ - - - + + + OpenBSD 2.6 Changelog - - + + +

-OpenBSD -2.6 Changelog +OpenBSD +2.6 Changelog

@@ -29,7 +43,7 @@ changes, starting with those listed below..

-Note: Problems for which patches exist are marked in red. +Note: Problems for which patches exist are marked in red.

For changes in other releases, click below:
@@ -84,14 +98,14 @@

Changes made between OpenBSD 2.5 and 2.6

2.6 source tree frozen.
Merge in some critical ATAPI fixes.
Force FDSCRIPTS. -
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available. +
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available.
Separate help(1) command, and a separate help(1) man page.
Move wrapper handling to the child process, in sshd(8).
Various fixes for the bignum and RSA handling code in sshd(8). @@ -250,7 +264,7 @@
Support "short" mouse protocol for the Tadpole sparc.
More queue.h macros.
In /etc/rc during vi recovery, ensure vi recovery files are normal. -
Change /etc/rc.shutdown handling, so that /etc/rc.shutdown is completely admin-editable and does not run if in single-user mode.
NOTE: If you follow current, this means that people need to install a new /etc/rc file. +
Change /etc/rc.shutdown handling, so that /etc/rc.shutdown is completely admin-editable and does not run if in single-user mode.
NOTE: If you follow current, this means that people need to install a new /etc/rc file.
On sparc, change pagetable pointers using atomic instructions.
Change pmap_enter() API.
Start doing an atoi(3) audit of the tree; most cases should use strtol() and strtoul(). @@ -266,7 +280,7 @@
Fix buf overflow in amd(8).
Support AAA-131CF card in ahc(4) driver.
Check SACK hole validity better, and do sequence space arithmetic better. -
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available. +
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
Some fixes to newsyslog(8).
Disable SACK for now; some issues remain.
Buffer overflow fixes in from(1). @@ -284,7 +298,7 @@
Crank kerberos default expiration date.
Teach i386 architecture code about Rise CPU models.
Build shared library called libperl. -
Use new arch -s option for building perl. +
Use new arch -s option for building perl.
Fix a few possible sparc pmap races.
Make ld.so work on mips again.
Merge machine(1) and arch(1) commands. @@ -307,7 +321,7 @@
In pcmcia ep(4) driver, support 3CXEM556B-INT.
Remove useless if_ep shutdown hook.
Import USB code. -
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default.) A patch is available. +
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default.) A patch is available.
Repair: probe svr4 emulation before linux once again.
Support -M and -N flags in uptime(1).
Detect IDT WinChip models. @@ -320,7 +334,7 @@
Skip hostname.* files if the interface does not exist.
Make mbuf panic messages unique.
Repair interface walking in rarpd(8). -
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available. +
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available.
pcmcia device attach/dettachment code, supporting network and serial devices now.
vdevgone() internal kernel API.
If fread(3) returns EBADF, also set the error flag. @@ -328,7 +342,7 @@
Split i386 ramdisks up a bit for the next release.
Fix sparc interrupt handler to recognize < 0 from an driver interrupt handler means "interrupt may have been for me, but I am not sure".
isakmpd(8) updates. -
Add SADB_FLUSH logic to IPSEC PFKEYv2, and a ipsecadm flush subcommand. +
Add SADB_FLUSH logic to IPSEC PFKEYv2, and a ipsecadm flush subcommand.
Update bktr driver.
Shrink some device drivers; we're trying to make more fit onto the install floppy.
config_defer support in the kernel. @@ -340,22 +354,22 @@
/tmp race repairs in yacc(1).
Propagate TMPDIR better into locate.updatedb(8).
Kill gzip sub-processes in pax(1) instead of letting them die from SIGPIPE. -
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available. +
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available.
Support for 3c515 isapnp 100mbit ethernet card, in ef(4).
Chown/chmod all of the pty devices.
If /etc/fstab is 0-length or not a regular file, have setfsent(3) fail.
Import of mailwrapper(8) into the tree.
Games updated. -
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available. +
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available.
New raidframe code.
Make sure install scripts remove async mount conditions before attempting to installboot(8). -
Have route flush skip PF_KEY flows. +
Have route flush skip PF_KEY flows.
tcpdump 3.4 merged.
Have pkg_create(1) use tar -T.
Add -T option to tar(1).
Fix fgetln(3) issue in pax(1). -
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available. -
If src file does not exist, have mv -i complain immediately. +
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available. +
If src file does not exist, have mv -i complain immediately.
Bug fix to pkg_add(8).
More man page cleanups.
Clean dmesg output from various drivers. @@ -434,7 +448,7 @@
Many man page improvements.
Newer version of isakmpd(8).
Support PAGER properly in pkg_install(8). -
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available. +
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available.
Add support for TCP MD5 (RFC 2385) option called TCP_SIGNATURE used for authenticating BGP sessions.
Support SIGUSR1 in init(8), used by i386 keyboard halt code, and make init(8) smart enough to run /etc/rc.shutdown
On i386 pcvt console, have CTRL-ALT-DEL sent a SIGUSR1 to init. @@ -539,10 +553,10 @@
swapctl(8) and the necessary kernel support.
Longer delay in the i386 pms(4) probe routine, for Thinkpads.
Correct some DTR handling in pccom(4). -
Add -p flag to encrypt(1). +
Add -p flag to encrypt(1).
Newer version of bktr(4) driver.
ncurses-4.2-990516 -
Correct some realloc(3) misuses in the fts(3) routines. A patch is available. +
Correct some realloc(3) misuses in the fts(3) routines. A patch is available.
Add xe(4) xircom ethernet driver.
Add support for static arp entries that cannot be overwritten.
Many man page fixes. @@ -555,7 +569,7 @@
Fix bounds control in msgs(1).
Fix 'X' check in gcc printf format checker.
Fix divide by zero in libcurses. -
A reliability patch for TCP over IPSEC ESP tunnels. A patch is available. +
A reliability patch for TCP over IPSEC ESP tunnels. A patch is available.
Improvements to the ss(4) driver.
Fix various endian related problems in nm(1), ranlib(1), strip(1), and size(1).
Do not rotate kerberos logs using newsyslog.conf @@ -585,20 +599,20 @@
Check for failure of strdup(3) in pax(1).
Greater care in tail(1), when going backwards.
Add wdt(4) driver for Industrial Computer Source PCI-WDT50x watchdog timers. -
Implement -U username in ps(1). +
Implement -U username in ps(1).
Add "verbose" command to boot_config(8).
Check correct argument in sliplogin(8).
New kernel hashinit().
More ppp(8) improvements and bug fixes.
More isakmpd(8) improvements and bug fixes.
In calendar(1), fix offset bug for yearly events. -
A reliability patch for ext2fs. A patch is available. +
A reliability patch for ext2fs. A patch is available.
Repair a mis-handling of non-terminated utmp strings in w(1).
m68k optimized asm version of strlcpy(3).
Do not accept incoming packets on a down interface.
More strict isapnp detection for the isa ep(8) cards.
kcore handling for the m68k ports. -
A serious reliability patch for the powerpc port, regarding traps and signals. Patches are available. +
A serious reliability patch for the powerpc port, regarding traps and signals. Patches are available.
Support power-down mode in the mac68k port.
Fix a retransmission problem in tcp_newreno.
Fix a sequence wraparound bug in very large tcp transfers. @@ -617,7 +631,7 @@
Fix probing of ISA ex(4) cards.
More amiga keymaps.
Add yyfix(1), from 4.4BSD. -
Merge mkfifo into mknod, so that mknod ends up having support for the -p option. +
Merge mkfifo into mknod, so that mknod ends up having support for the -p option.
Fix a output buffer overflow in msgrcv(2).
Fix odbm support and permit opening a zero-length hash file.
new true awk, April 16 release. @@ -625,7 +639,3 @@
Bug fixes to sparc spif(4), hme(4), be(4) drivers.
Updated distrib/notes which shipped with the 2.5 release.

- - -