This is a partial list of the major machine independent changes
@@ -27,7 +28,7 @@
changes, starting with those listed below..
-Note: Problems for which patches exist are marked in red.
+Note: Problems for which patches exist are marked in red.
@@ -51,12 +52,12 @@
-
OpenBSD 2.6 released (December 1, 1999).
+
OpenBSD 2.6 released (December 1, 1999).
2.6 source tree frozen.
Merge in some critical ATAPI fixes.
Force FDSCRIPTS.
-
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available.
+
RELIABILITY ISSUE: Fix a bug in the brooktree driver which permitted any user to crash some OpenBSD/i386 machines. A patch is available.
Separate help(1) command, and a separate help(1) man page.
Move wrapper handling to the child process, in sshd(8).
Various fixes for the bignum and RSA handling code in sshd(8).
@@ -231,7 +232,7 @@
Fix buf overflow in amd(8).
Support AAA-131CF card in ahc(4) driver.
Check SACK hole validity better, and do sequence space arithmetic better.
-
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
+
SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
Some fixes to newsyslog(8).
Disable SACK for now; some issues remain.
Buffer overflow fixes in from(1).
@@ -272,7 +273,7 @@
In pcmcia ep(4) driver, support 3CXEM556B-INT.
Remove useless if_ep shutdown hook.
Import USB code.
-
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default). A patch is available.
+
SECURITY ISSUE: The procfs and fdescfs filesystems had an overrun in their handling of uio_offset in their readdir() routines. (These filesystems are not enabled by default). A patch is available.
Repair: probe svr4 emulation before linux once again.
Support -M and -N flags in uptime(1).
Detect IDT WinChip models.
@@ -285,7 +286,7 @@
Skip hostname.* files if the interface does not exist.
Make mbuf panic messages unique.
Repair interface walking in rarpd(8).
-
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available.
+
SECURITY ISSUE: Stop profiling (see profil(2)) when we execve() a new process. A patch is available.
pcmcia device attach/dettachment code, supporting network and serial devices now.
vdevgone() internal kernel API.
If fread(3) returns EBADF, also set the error flag.
@@ -305,13 +306,13 @@
/tmp race repairs in yacc(1).
Propagate TMPDIR better into locate.updatedb(8).
Kill gzip sub-processes in pax(1) instead of letting them die from SIGPIPE.
-
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available.
+
SECURITY ISSUE: In /etc/rc, use mktemp(1) for motd re-writing and change the find(1) to use -execdir. A patch is available.
Support for 3c515 isapnp 100mbit ethernet card, in ef(4).
Chown/chmod all of the pty devices.
If /etc/fstab is 0-length or not a regular file, have setfsent(3) fail.
Import of mailwrapper(8) into the tree.
Games updated.
-
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available.
+
SECURITY ISSUE: Do not permit regular users to chflags(2) or fchflags(2) character or block devices. A patch is available.
New raidframe code.
Make sure install scripts remove async mount conditions before attempting to installboot(8).
Have route flush skip PF_KEY flows.
@@ -319,7 +320,7 @@
Have pkg_create(1) use tar -T.
Add -T option to tar(1).
Fix fgetln(3) issue in pax(1).
-
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available.
+
SECURITY ISSUE: Make nroff(1) call groff(1) with the -S option. A patch is available.
If src file does not exist, have mv -i complain immediately.
Bug fix to pkg_add(8).
More man page cleanups.
@@ -399,7 +400,7 @@
Many man page improvements.
Newer version of isakmpd(8).
Support PAGER properly in pkg_install(8).
-
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available.
+
SECURITY ISSUE: Fix an ipsec_in_use out-of-sync condition. A patch is available.
Add support for TCP MD5 (RFC 2385) option called TCP_SIGNATURE used for authenticating BGP sessions.
Support SIGUSR1 in init(8), used by i386 keyboard halt code, and make init(8) smart enough to run /etc/rc.shutdown
On i386 pcvt console, have CTRL-ALT-DEL sent a SIGUSR1 to init.
@@ -507,7 +508,7 @@