=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus28.html,v retrieving revision 1.74 retrieving revision 1.75 diff -c -r1.74 -r1.75 *** www/plus28.html 2019/05/27 22:55:22 1.74 --- www/plus28.html 2019/06/01 23:12:49 1.75 *************** *** 154,160 ****
  • Fix noprint/print/octal options in vi(1).
  • Add support for i815 motherboards and their devices.
  • Disable DMA support for Opti pciide(4) devices, since there are some boards that apparently wired them up wrong... !
  • Use echo(1) instead of printf(1) to repair the format string bugs in /etc/security
  • Do not free an uninitialized variable in curses(3).
  • Switch to 2.8 release numbering.
  • Print powerpc MHz ratings. --- 154,160 ----
  • Fix noprint/print/octal options in vi(1).
  • Add support for i815 motherboards and their devices.
  • Disable DMA support for Opti pciide(4) devices, since there are some boards that apparently wired them up wrong... !
  • Use echo(1) instead of printf(1) to repair the format string bugs in /etc/security
  • Do not free an uninitialized variable in curses(3).
  • Switch to 2.8 release numbering.
  • Print powerpc MHz ratings. *************** *** 168,174 ****
  • Fix nasty dl_strcmp() bug in powerpc ld.so(1).
  • Generate proper /etc/resolv.conf files from dhclient(8).
  • Repair quotas greater than 4GB in quota(1). !
  • SECURITY FIX: httpd(8) mod_rewrite and mod_vhost_alias modules could expose files on server if used.
    A patch is available    .
    [Applied to stable] --- 168,174 ----
  • Fix nasty dl_strcmp() bug in powerpc ld.so(1).
  • Generate proper /etc/resolv.conf files from dhclient(8).
  • Repair quotas greater than 4GB in quota(1). !
  • SECURITY FIX: httpd(8) mod_rewrite and mod_vhost_alias modules could expose files on server if used.
    A patch is available    .
    [Applied to stable] *************** *** 178,184 ****
  • Repair a short read issue in scp(1).
  • For i386 apm(4), if periodic checking fails repeatedly, shut it down.
  • Very amusing printf(1)-based format string bugs in /etc/security. !
  • Prevent vlan(4) status changes until configuration is complete.
  • Workaround i386 bios serial call problem (helps DSR issues on some BIOS).
    [Applied to stable]
  • Better error message out of ftp(1) regarding invalid port numbers. --- 178,184 ----
  • Repair a short read issue in scp(1).
  • For i386 apm(4), if periodic checking fails repeatedly, shut it down.
  • Very amusing printf(1)-based format string bugs in /etc/security. !
  • Prevent vlan(4) status changes until configuration is complete.
  • Workaround i386 bios serial call problem (helps DSR issues on some BIOS).
    [Applied to stable]
  • Better error message out of ftp(1) regarding invalid port numbers. *************** *** 268,274 ****
  • Permit moused(8) and X11 to coexist.
  • For now, work around powerpc pmap/cache bug by having ld.so(1) do extre cache flushes.
  • Use -q flag to ls(1) in /etc/security, for safety against non-printable characters. !
  • Avoid fd_set overflows in ping(8), ping6(8), traceroute(8), traceroute6(8), ampd(8), kadmin(8), getty(8), ppp(8),
  • Remove unimplemented -edebug flag from telnetd(8).
  • Various improvements to ppp(8).
  • pthread support on the powerpc. --- 268,274 ----
  • Permit moused(8) and X11 to coexist.
  • For now, work around powerpc pmap/cache bug by having ld.so(1) do extre cache flushes.
  • Use -q flag to ls(1) in /etc/security, for safety against non-printable characters. !
  • Avoid fd_set overflows in ping(8), ping6(8), traceroute(8), traceroute6(8), ampd(8), kadmin(8), getty(8), ppp(8),
  • Remove unimplemented -edebug flag from telnetd(8).
  • Various improvements to ppp(8).
  • pthread support on the powerpc. *************** *** 557,563 ****
  • Latest version of the pcvt(4) scrolling region patch...
    A patch is available.
    [Applied to stable] !
  • Make getaddrinfo(3) return EAI_NODATA for name resolution errors.
  • Greater care of rlimit handling in sbrk(2).
    [Applied to stable]
  • Cleanup spl handling on the sparc. --- 557,563 ----
  • Latest version of the pcvt(4) scrolling region patch...
    A patch is available.
    [Applied to stable] !
  • Make getaddrinfo(3) return EAI_NODATA for name resolution errors.
  • Greater care of rlimit handling in sbrk(2).
    [Applied to stable]
  • Cleanup spl handling on the sparc. *************** *** 621,627 ****
  • Repair stupid bugs in ste(4), which prevented it from working in 2.7 release.
    A patch is available.
    [Applied to stable]
  • Connection limitation code for sshd(8). !
  • Allow svnd(4) to work on sparse files.
  • In pciide(4), support CMD 648/649 UDMA66 controllers, and also fix the Promise UDMA66 cable check code.
  • ncurses 2000/6/10 update to termtypes.master.
  • In ne(4), re-fix Linksys Combo PCMCIA EthernetCard (EC2T) after AX88190 broke it. --- 621,627 ----
  • Repair stupid bugs in ste(4), which prevented it from working in 2.7 release.
    A patch is available.
    [Applied to stable]
  • Connection limitation code for sshd(8). !
  • Allow svnd(4) to work on sparse files.
  • In pciide(4), support CMD 648/649 UDMA66 controllers, and also fix the Promise UDMA66 cable check code.
  • ncurses 2000/6/10 update to termtypes.master.
  • In ne(4), re-fix Linksys Combo PCMCIA EthernetCard (EC2T) after AX88190 broke it. *************** *** 657,663 ****
  • Closer towards making some more sm(4) pcmcia(4) cards work.
  • More verbose information for pppoe(8) in tcpdump(8).
  • Teach ipv6 AH & ip-over-ip code to deal with ipv6 scoped addresses better. !
  • Initialize mtu/hlim for enc(4) so that IPv6 icmp reflect works properly.
  • Do not double-log ipf(8) information into /var/log/messages.
  • Repair bridging issues in an(4) and tl(4).
  • Fix ipv6 ipsec AH length checks. --- 657,663 ----
  • Closer towards making some more sm(4) pcmcia(4) cards work.
  • More verbose information for pppoe(8) in tcpdump(8).
  • Teach ipv6 AH & ip-over-ip code to deal with ipv6 scoped addresses better. !
  • Initialize mtu/hlim for enc(4) so that IPv6 icmp reflect works properly.
  • Do not double-log ipf(8) information into /var/log/messages.
  • Repair bridging issues in an(4) and tl(4).
  • Fix ipv6 ipsec AH length checks. *************** *** 681,687 **** [Applied to stable]
  • Modify vmstat(8)'s -f option to show kernel threads as yet another kind of process.
  • Modify ps(1) to hide system processes unless -k is given. !
  • Mark kernel threads as system processes.
  • Cleanup some things in sparc hme(4) and qe(4).
  • Numerous other IPV6 kernel changes.
    Too many for me to list in detail, but Itojun is busy in the other room hunched over a laptop screen with Angelos, and we are sure more are coming. --- 681,687 ---- [Applied to stable]
  • Modify vmstat(8)'s -f option to show kernel threads as yet another kind of process.
  • Modify ps(1) to hide system processes unless -k is given. !
  • Mark kernel threads as system processes.
  • Cleanup some things in sparc hme(4) and qe(4).
  • Numerous other IPV6 kernel changes.
    Too many for me to list in detail, but Itojun is busy in the other room hunched over a laptop screen with Angelos, and we are sure more are coming. *************** *** 700,706 ****
  • SECURITY ISSUE: Two localhost denial of service problems in the an(4) Aironet Communications 4500/4800 IEEE 802.11DS driver. One bug prevents ancontrol(8) from working correctly, instead causing a panic, while the other allows unauthorized users to change settings.
    A patch is available    .
    [Applied to stable] !
  • crypto(9) kernel thread permits hardware crypto devices to run at any spl they prefer.
  • Initial OpenSSH support for ssh.com's 2.2.0.
  • For setsockopt(2) and getsockopt(2), do not assume non-PF_INET6 address family to be PF_INET.
  • In sshd(8), implement bug compatibility with ssh-2.0.13. --- 700,706 ----
  • SECURITY ISSUE: Two localhost denial of service problems in the an(4) Aironet Communications 4500/4800 IEEE 802.11DS driver. One bug prevents ancontrol(8) from working correctly, instead causing a panic, while the other allows unauthorized users to change settings.
    A patch is available    .
    [Applied to stable] !
  • crypto(9) kernel thread permits hardware crypto devices to run at any spl they prefer.
  • Initial OpenSSH support for ssh.com's 2.2.0.
  • For setsockopt(2) and getsockopt(2), do not assume non-PF_INET6 address family to be PF_INET.
  • In sshd(8), implement bug compatibility with ssh-2.0.13. *************** *** 807,813 **** [Applied to stable]
  • Many other changes to ssh(1).
  • Fix short malloc in faithd(8). !
  • In ssh(1), permit logins if temporary file systems are full.
  • ich(4) audio driver onboard the Intel 810/820/440MX-based machines.
  • Support ax88190 in ne(4).
  • In apm(4) the time is kept in hours, not minutes. --- 807,813 ---- [Applied to stable]
  • Many other changes to ssh(1).
  • Fix short malloc in faithd(8). !
  • In ssh(1), permit logins if temporary file systems are full.
  • ich(4) audio driver onboard the Intel 810/820/440MX-based machines.
  • Support ax88190 in ne(4).
  • In apm(4) the time is kept in hours, not minutes. *************** *** 838,844 ****
  • Properly configure multicast table in wi(4).
  • Handle 64 bit architectures in pstat(8) -f.
  • Update rtadvd(8). !
  • Remove nfsiod(8) and replace it with an in-kernel thread based implementation.
  • Make ssh(1) X11 forwarding work on localhost.
  • Crank vnode use counts to 32 bits.
  • Correct ifconfig(8) printing of gif physical address on non-IPV6 kernel. --- 838,844 ----
  • Properly configure multicast table in wi(4).
  • Handle 64 bit architectures in pstat(8) -f.
  • Update rtadvd(8). !
  • Remove nfsiod(8) and replace it with an in-kernel thread based implementation.
  • Make ssh(1) X11 forwarding work on localhost.
  • Crank vnode use counts to 32 bits.
  • Correct ifconfig(8) printing of gif physical address on non-IPV6 kernel.