===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus35.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- www/plus35.html	2004/03/30 05:41:56	1.2
+++ www/plus35.html	2004/04/04 19:12:57	1.3
@@ -57,6 +57,28 @@
 <p>
 
 <ul>
+<!-- ^ 20040330 -->
+<li>Don't use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&amp;sektion=2">FD_ZERO(2)</a> in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;sektion=8">isakmpd(8)</a>'s privsep monitor.
+<li>When binding UDP server sockets in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;sektion=8">isakmpd(8)</a>, check the sockaddr buffer is large enough before copying.
+<!-- ^ 20030429 -->
+<li>Add some extra sanity checks for incoming <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&amp;sektion=4">pfsync(4)</a> packets.
+<li>Fix a kernel memory leak when deleting interface addresses (SIOCDIFADDR).
+<!-- ^ 20040328 -->
+<li>Add a missing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=spl&amp;sektion=9">spl(9)</a> around if_down() in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vlan&amp;sektion=4">vlan(4)</a>.
+<!-- ^ 20040327 -->
+<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf(4)</a>, properly <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=m_copyback&amp;sektion=9">m_copyback(9)</a> the modified TCP sequence number after demodulation.
+<li>Fix a use-after-free in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&amp;sektion=4">carp(4)</a>.
+<li>Raise <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&amp;sektion=4">carp(4)</a> advskew to 240 while waiting for the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&amp;sektion=4">pfsync(4)</a> bulk update. This makes sure that other hosts can preempt a host that's booting up but hasn't got its network bearings yet.
+<!-- ^ 20040326 -->
+<li>Fix a check-for-null-then-deref-anyway bug in icmp6.
+<li>Fix a cut-and-pasto in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf(4)</a>'s stateful ICMP code.
+<li>Unbreak the ICMP checksum when <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf(4)</a> sequence number modulation is used.
+<!-- ^ 20040325 -->
+<li>Disable carp error logging (<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&amp;sektion=3">sysctl(3)</a> net.inet.carp.log) by default.
+<!-- ^ 20040324 -->
+<li>Remove an unnecessary null termination in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;sektion=8">isakmpd(8)</a> privsep monitor.
+<li>Teach <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=file&amp;sektion=1">file(1)</a> about OpenBSD-amd64 binaries and coredumps.
+<li>Add a small delay before the bulk update to stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&amp;sektion=4">pfsync(4)</a> looping unnecessarily.
 <!-- ^ 20040323 -->
 <li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&amp;sektion=3">ssl(3)</a> rmd160 breakage on sparc64.
 <li>Teach <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&amp;sektion=8">tcpdump(8)</a> how to display the new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&amp;sektion=4">pfsync(4)</a> bulk updates.
@@ -79,7 +101,7 @@
 <li>Have privsep <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&amp;sektion=8">named(8)</a> pass SIGINT to the child process.
 <li>Upgrade Puffy to 3.5 and lock XF4 for release.
 <li>Add final pieces of privilege separation for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;sektion=8">isakmpd(8)</a> and switch it on.
-<li>Add <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pxeboot&amp;sektion=8">pxeboot(8)</a> for i386, derived from NetBSD.
+<li>Add <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pxeboot&amp;sektion=8&amp;arch=i386">pxeboot(8)</a> for i386 and amd64, derived from NetBSD.
 <li>Fix another stray semicolon, in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&amp;sektion=8">tcpdump(8)</a>'s ASN.1 printer this time.
 <li>More <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mpt&amp;sektion=4">mpt(4)</a> fixes, more to come.
 <!-- ^ 20040319 -->
@@ -1437,6 +1459,8 @@
 <!-- ^ 20030928 -->
 <!-- ^ 20030927 -->
 <li>Further <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=realloc&amp;sektion=3">realloc(3)</a> cleanup.
+<li>Re-engineer the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf(4)</a> ioctl interface to allow near-100% atomicity for 'pfctl -f /etc/pf.conf' commands.<br>
+    <a href="stable.html"><font color="#00b000">[Applied to stable]</font></a>
 <li>Fix bogus getutmp() error check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=battlestar&amp;sektion=6">battlestar(6)</a>.
 <li>Change the xfs backend from select to poll.
 <li>Introduce 64-bit <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=byteorder&amp;sektion=3">byteorder(3)</a> macros.
@@ -1572,7 +1596,7 @@
 <hr>
 <a href="index.html"><img height=24 width=24 src="back.gif" border=0 alt="OpenBSD"></a> 
 <a href="mailto:www@openbsd.org">www@openbsd.org</a>
-<br><small>$OpenBSD: plus35.html,v 1.2 2004/03/30 05:41:56 david Exp $</small>
+<br><small>$OpenBSD: plus35.html,v 1.3 2004/04/04 19:12:57 deraadt Exp $</small>
 
 </body>
 </html>