version 1.5, 2003/04/13 16:19:11 |
version 1.6, 2003/05/05 16:45:38 |
|
|
<li>Stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendbug&sektion=1">sendbug(1)</a> reporting spurious errors. |
<li>Stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendbug&sektion=1">sendbug(1)</a> reporting spurious errors. |
<li>Restore <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ac97&sektion=4">ac97(4)</a> state after an <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apm&sektion=4">apm(4)</a> resume. |
<li>Restore <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ac97&sektion=4">ac97(4)</a> state after an <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apm&sektion=4">apm(4)</a> resume. |
<li>Make the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a> default facility LOG_USER instead of (due to a bug) LOG_UUCP. |
<li>Make the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a> default facility LOG_USER instead of (due to a bug) LOG_UUCP. |
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=8">netstat(8)</a> -m output of mbuf cluster stats much more useful. |
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a> -m output of mbuf cluster stats much more useful. |
<li>Fix memory use percentage output of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ps&sektion=1">ps(1)</a>. |
<li>Fix memory use percentage output of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ps&sektion=1">ps(1)</a>. |
<li>Some endianness fixes to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ahc&sektion=4">ahc(4)</a>, making it works on macppc. |
<li>Some endianness fixes to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ahc&sektion=4">ahc(4)</a>, making it works on macppc. |
<li>Fix some problems with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> table statistics. |
<li>Fix some problems with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> table statistics. |
|
|
<!-- ^ 20030321 --> |
<!-- ^ 20030321 --> |
<li>Enquote $lpd_flags in /etc/rc. |
<li>Enquote $lpd_flags in /etc/rc. |
<!-- ^ 20030320 --> |
<!-- ^ 20030320 --> |
<li>Fix a logic error in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=1">sudo(1)</a>'s SIGCHLD handler. |
<li>Fix a logic error in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo(8)</a>'s SIGCHLD handler. |
<li><font color="#e00000"><strong>SECURITY FIX: OpenSSL is vulnerable to an extension of the `Bleichenbacher' attack designed by Czech researchers Klima, Pokorny and Rosa.</strong></font><br> |
<li><font color="#e00000"><strong>SECURITY FIX: OpenSSL is vulnerable to an extension of the `Bleichenbacher' attack designed by Czech researchers Klima, Pokorny and Rosa.</strong></font><br> |
<a href="errata32.html#kpr">A source code patch is available</a>.<br> |
<a href="errata32.html#kpr">A source code patch is available</a>.<br> |
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
|
<!-- ^ 20030317 --> |
<!-- ^ 20030317 --> |
<li>Fix a bad string length when checking options to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=login_passwd&sektion=8">login_passwd(8)</a>. |
<li>Fix a bad string length when checking options to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=login_passwd&sektion=8">login_passwd(8)</a>. |
<li>Add a nicely free license to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=hack&sektion=6">hack(6)</a>. |
<li>Add a nicely free license to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=hack&sektion=6">hack(6)</a>. |
<li>Fix a bogus string initialisation when printing IPv6 addresses that was causing a segfault in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=8">netstat(8)</a>. |
<li>Fix a bogus string initialisation when printing IPv6 addresses that was causing a segfault in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a>. |
<!-- ^ 20030316 --> |
<!-- ^ 20030316 --> |
<li>More string function sanity in the 4.3BSD compat library, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=crypto&sektion=3">crypto(3)</a><!-- 20030316 --> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=1">sudo(1)</a>. |
<li>More string function sanity in the 4.3BSD compat library, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=crypto&sektion=3">crypto(3)</a><!-- 20030316 --> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo(8)</a>. |
<li>Fix a string under-allocation in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mountd&sektion=8">mountd(8)</a>. |
<li>Fix a string under-allocation in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mountd&sektion=8">mountd(8)</a>. |
<li>Update to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=1">sudo(1)</a> 1.6.7. |
<li>Update to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo(8)</a> 1.6.7. |
<li><font color="#e00000"><strong>SECURITY FIX: Various SSL and TLS operations in OpenSSL are vulnerable to timing attacks.</strong></font><br> |
<li><font color="#e00000"><strong>SECURITY FIX: Various SSL and TLS operations in OpenSSL are vulnerable to timing attacks.</strong></font><br> |
<a href="errata32.html#blinding">An `RSA blinding' source code patch is available</a>.<br> |
<a href="errata32.html#blinding">An `RSA blinding' source code patch is available</a>.<br> |
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> <!-- XXX 3.2-stable --> |
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> <!-- XXX 3.2-stable --> |
<li>Require <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=spamd&sektion=8">spamd(8)</a> control connections to originate from a reserved port. |
<li>Require <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=spamd&sektion=8">spamd(8)</a> control connections to originate from a reserved port. |
<li>Plug a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> tables memory leak. |
<li>Plug a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> tables memory leak. |
<li>Scale the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=altq&sektion=4">altq(4)</a> RED thresholds to 10% (min) and 30% (max) of the queue limit. |
<li>Scale the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=altq&sektion=9">altq(9)</a> RED thresholds to 10% (min) and 30% (max) of the queue limit. |
<li>Fix a one-byte underflow in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=raidctl&sektion=8">raidctl(8)</a>. |
<li>Fix a one-byte underflow in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=raidctl&sektion=8">raidctl(8)</a>. |
<li>Switch <a href="http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf">RSA blinding</a> on for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh-agent&sektion=1">ssh-agent(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssk-keysign&sektion=8">ssk-keysign(8)</a>. |
<li>Switch <a href="http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf">RSA blinding</a> on for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh-agent&sektion=1">ssh-agent(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh-keysign&sektion=8">ssh-keysign(8)</a>. |
<li>Still more sprintf -> snprintf and strcpy -> strlcpy in many, many places. |
<li>Still more sprintf -> snprintf and strcpy -> strlcpy in many, many places. |
<!-- ^ 20030313 --> |
<!-- ^ 20030313 --> |
<li>More strcpy -> strlcpy, this time in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=badsect&sektion=8">badsect(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=restore&sektion=8">restore(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=scsi&sektion=8">scsi(8)</a>. |
<li>More strcpy -> strlcpy, this time in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=badsect&sektion=8">badsect(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=restore&sektion=8">restore(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=scsi&sektion=8">scsi(8)</a>. |