7a8f6e8 | Jacques Vidrine | 27 November 2003, 16:40:03 UTC | Correct a remote denial-of-service attack in named(8). | 27 November 2003, 16:40:03 UTC |
6df7e95 | Jacques Vidrine | 04 October 2003, 16:14:25 UTC | MFS 1.10.2.5: Unbreak read/write behavior (introduced in previous revision). | 04 October 2003, 16:14:25 UTC |
6c72f82 | Jacques Vidrine | 03 October 2003, 13:07:38 UTC | Merge from RELENG_4: kern_subr.c 1.31.2.3, procfs_dbregs.c 1.4.2.4, procfs_fpregs.c 1.11.2.4, procfs_regs.c 1.10.2.4, procfs_rlimit.c 1.5.2.1, procfs_status.c 1.20.2.5, uio.h 1.11.2.2, linprocfs_misc.c 1.3.2.9. Correct several integer underflows/overflows in procfs and linprocfs. | 03 October 2003, 13:07:38 UTC |
1dd2354 | Jacques Vidrine | 02 October 2003, 15:58:53 UTC | MFS 1.55.2.11: Correct a reference counting bug in readv(2). | 02 October 2003, 15:58:53 UTC |
d4b98ab | Jacques Vidrine | 25 September 2003, 13:35:48 UTC | Bump patch level for updated arplookup fix. | 25 September 2003, 13:35:48 UTC |
c792630 | Bruce M Simpson | 24 September 2003, 21:51:13 UTC | Fix a logic error in the check to see if arplookup() should free the route. Noticed by: Mike Hogsett Reviewed by: ru | 24 September 2003, 21:51:13 UTC |
acdfc20 | Bruce M Simpson | 23 September 2003, 16:54:39 UTC | Fix a bug in arplookup(), whereby a hostile party on a locally attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security <product-security@apple.com> | 23 September 2003, 16:54:39 UTC |
1baffa9 | Gregory Shapiro | 17 September 2003, 20:22:03 UTC | MFC: sendmail address parsing bug fix Approved by: so (nectar) | 17 September 2003, 20:22:03 UTC |
611d790 | Jacques Vidrine | 17 September 2003, 14:58:56 UTC | MFC buffer.c 1.2, channels.c 1.16, deattack.c 1.1.1.6, misc.c 1.1.1.5 (->scp.c), session.c 1.41, ssh-agent.c 1.19: Correct more cases of allocation size bookkeeping errors. | 17 September 2003, 14:58:56 UTC |
e52aea2 | Jacques Vidrine | 16 September 2003, 17:51:06 UTC | MFC buffer.c 1.1.1.7: Do not record expanded size before attempting to reallocate associated memory. | 16 September 2003, 17:51:06 UTC |
4ca1f6a | Jacques Vidrine | 12 August 2003, 20:24:13 UTC | Merge from RELENG_4_7 1.51.2.4.2.2: Fix typo: `uap->data' versus `data'. | 12 August 2003, 20:24:13 UTC |
4beddca | Jacques Vidrine | 10 August 2003, 23:35:21 UTC | MFC 1.24: Validate the iBCS2 statfs(2) length parameter. | 10 August 2003, 23:35:21 UTC |
53d78a5 | Jacques Vidrine | 10 August 2003, 23:23:57 UTC | MFC sys_process.c 1.113, spigot.c 1.60: Add or correct range checking of signal numbers in system calls and ioctls. | 10 August 2003, 23:23:57 UTC |
3a9327a | Jacques Vidrine | 03 August 2003, 23:47:39 UTC | realpath(3) bug fix: There was an off-by-one error in computing the size of the resulting canonical path. | 03 August 2003, 23:47:39 UTC |
920376e | Julian Elischer | 04 April 2003, 19:09:45 UTC | MF4.6 Security update FreeBSD-SA-03:05.xdr Approved by: re@ (blanket agreement for 4.4) Obtained from: 4.6 | 04 April 2003, 19:09:45 UTC |
f361dbf | Gregory Shapiro | 29 March 2003, 21:58:11 UTC | Update FreeBSD Security Advisory Number Approved by: so (nectar) | 29 March 2003, 21:58:11 UTC |
bd419de | Gregory Shapiro | 29 March 2003, 20:13:35 UTC | sendmail parsing buffer overflow fix Advisory number to be filled in later Approved by: so (nectar) | 29 March 2003, 20:13:35 UTC |
8ba95b4 | Julian Elischer | 05 March 2003, 03:33:30 UTC | Put in the cvserver patches.. (MF4.6) SA: FreeBSD-SA-03:01.cvs Approved by: security officer (nectar@) Obtained from: FreeBSD-SA-03:01.cvs | 05 March 2003, 03:33:30 UTC |
1b777a8 | Gregory Shapiro | 03 March 2003, 17:23:11 UTC | FreeBSD-SA-03:04.sendmail: sendmail header parsing buffer overflow Approved by: security-officer (nectar) | 03 March 2003, 17:23:11 UTC |
fed8b00 | Jacques Vidrine | 07 January 2003, 15:17:41 UTC | MFC 1.114: Fix a file descriptor leak in fpathconf(2). | 07 January 2003, 15:17:41 UTC |
13625ed | Julian Elischer | 22 November 2002, 21:56:06 UTC | Commit SA-02:42 to the 4.4 branch bump the release number to p31 so we can tell if it's been done or not. Approved by: security officer. | 22 November 2002, 21:56:06 UTC |
9a9f4f6 | Jacques Vidrine | 14 November 2002, 05:15:15 UTC | Correct recent name server vulnerabilities as documented at <URL:http://www.isc.org/products/BIND/bind-security.html> and <URL:http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469>. Obtained from: ISC | 14 November 2002, 05:15:15 UTC |
ea06fdf | Gregory Shapiro | 26 October 2002, 21:11:30 UTC | MFC: Fix smrsh bypass bug. Approved by: security-officer | 26 October 2002, 21:11:30 UTC |
8d5bda6 | Chris D. Faulhaber | 23 October 2002, 14:11:45 UTC | Update UPDATING and bump patch level for kadmind fix. | 23 October 2002, 14:11:45 UTC |
e98edac | Assar Westerlund | 23 October 2002, 13:21:32 UTC | MFC kadm_ser_wrap.c:1.1.1.4: fix buffer overflow MFC updating kerberosIV and kerberos5 versions consistenly Approved by: security-officer Obtained from: kth-krb CVS | 23 October 2002, 13:21:32 UTC |
e83b3fa | Assar Westerlund | 22 October 2002, 03:43:30 UTC | import 1.27 to fix buffer overflow: check size of rlen Approved by: security-officer Obtained from: Heimdal CVS | 22 October 2002, 03:43:30 UTC |
78ba46e | Jacques Vidrine | 13 September 2002, 16:28:51 UTC | MFC src/lib/libkvm/kvm.c 1.23: mark file descriptors close-on-exec. | 13 September 2002, 16:28:51 UTC |
ad5891f | Jacques Vidrine | 13 September 2002, 15:09:07 UTC | MFC src/lib/libkvm/kvm.c 1.23: mark file descriptors close-on-exec. | 13 September 2002, 15:09:07 UTC |
c5005df | Bruce A. Mah | 05 September 2002, 15:40:31 UTC | Add cross-reference for SA-02:38. Approved by: security-officer (implicitly) | 05 September 2002, 15:40:31 UTC |
63e37ad | Jacques Vidrine | 13 August 2002, 12:13:50 UTC | MFC of upc_syscalls:1.123,1.124 and vesa.c:1.37. Submitted by: Silvio Cesare <silvio@qualys.com> (1.123, 1.37) | 13 August 2002, 12:13:50 UTC |
53dfcc8 | Jacques Vidrine | 06 August 2002, 17:50:45 UTC | Add references to FreeBSD-SA-02:33.openssl and FreeBSD-SA-02:35.ffs to the applicable entries. Requested by: matusita | 06 August 2002, 17:50:45 UTC |
7547985 | Jacques Vidrine | 05 August 2002, 16:28:58 UTC | MFC src/crypto/openssl/crypto/asn1/asn1_lib.c rev 1.1.1.6: Correct a bug in the ASN.1 decoder. | 05 August 2002, 16:28:58 UTC |
cb86dae | Dag-Erling Smorgrav | 05 August 2002, 15:13:49 UTC | MFS: check far end of pipe. | 05 August 2002, 15:13:49 UTC |
ad75475 | Bruce A. Mah | 04 August 2002, 23:50:01 UTC | Add cross-reference for SA-02:33. Approved by: security-officer (implicitly) | 04 August 2002, 23:50:01 UTC |
04a0ef3 | Dag-Erling Smorgrav | 01 August 2002, 22:06:07 UTC | Update UPDATING and bump patch level for NFS fix. | 01 August 2002, 22:06:07 UTC |
bd62217 | Dag-Erling Smorgrav | 01 August 2002, 19:31:55 UTC | MFC (1.78): avoid infinite loop upon receipt of zero-length RPC | 01 August 2002, 19:31:55 UTC |
d6abfd3 | Jacques Vidrine | 01 August 2002, 12:24:20 UTC | The fix applied to the XDR decoder in lib/libc/xdr/xdr_array.c revision 1.8.6.1 was incorrect. | 01 August 2002, 12:24:20 UTC |
57b6a26 | Chris D. Faulhaber | 31 July 2002, 17:55:22 UTC | Correct bounds checking error in FFS filesize limits. | 31 July 2002, 17:55:22 UTC |
f633f61 | Jacques Vidrine | 31 July 2002, 16:41:27 UTC | MFC: OpenSSL 0.9.6e | 31 July 2002, 16:41:27 UTC |
5f391fd | Jacques Vidrine | 31 July 2002, 14:50:18 UTC | Add missing header <limits.h> for UINT_MAX introduced in previous commit. | 31 July 2002, 14:50:18 UTC |
31f28be | Jacques Vidrine | 31 July 2002, 13:21:13 UTC | Remove `By this count' line ... it provides no additional information and I always forget to update it. | 31 July 2002, 13:21:13 UTC |
cf63770 | Jacques Vidrine | 31 July 2002, 13:19:08 UTC | MFC lib/libc/xdr/xdr_array.c 1.11: Patch to fix bounds checking/overflow. | 31 July 2002, 13:19:08 UTC |
4212144 | Jacques Vidrine | 31 July 2002, 13:17:38 UTC | Correct awkward wording in recent pppd entry. | 31 July 2002, 13:17:38 UTC |
fb89440 | Jacques Vidrine | 30 July 2002, 19:17:27 UTC | MFC 1.20: Use fchmod() to restore the tty modes. | 30 July 2002, 19:17:27 UTC |
ea647bc | Jacques Vidrine | 30 July 2002, 15:43:17 UTC | MFC sys/kern/kern_exec.c 1.178: Fix ordering of set-(user|group)-ID checks. | 30 July 2002, 15:43:17 UTC |
34f9436 | cvs2svn | 30 July 2002, 13:38:09 UTC | This commit was manufactured by cvs2svn to create branch 'RELENG_4_4'. | 30 July 2002, 13:38:09 UTC |
10fa62f | Bruce A. Mah | 18 July 2002, 22:31:10 UTC | Correct date of BIND 8.3.3 merge, reformat. Cross-reference SA-02:28 where appropriate. Approved by: security-officer (implicitly) | 18 July 2002, 22:31:10 UTC |
933138b | Doug Barton | 18 July 2002, 09:16:21 UTC | Notate the upgrade to BIND 8.3.3 Approved by: security-officer | 18 July 2002, 09:16:21 UTC |
6a35cf7 | Doug Barton | 18 July 2002, 09:06:16 UTC | Bump patchlevel to reflect upgrade to BIND 8.3.3 Approved by: security-officer | 18 July 2002, 09:06:16 UTC |
0ca72ec | Doug Barton | 15 July 2002, 10:08:44 UTC | Add the hex.c source to the build of this library. Approved by: security-officer | 15 July 2002, 10:08:44 UTC |
a324f6e | Doug Barton | 15 July 2002, 08:01:49 UTC | Upgrade to version 8.3.3. Approved by: security-officer | 15 July 2002, 08:01:49 UTC |
eddf98f | Jacques Vidrine | 12 July 2002, 13:31:44 UTC | MFC 1.6: Correct a buffer overflow when handling malformed NFS packets. | 12 July 2002, 13:31:44 UTC |
2e069f2 | Dag-Erling Smorgrav | 11 July 2002, 16:56:05 UTC | MFS: prevent tracing of previously privileged processes. | 11 July 2002, 16:56:05 UTC |
5610925 | cvs2svn | 01 July 2002, 01:08:00 UTC | This commit was manufactured by cvs2svn to create branch 'RELENG_4_4'. | 01 July 2002, 01:08:00 UTC |
cb76ecf | cvs2svn | 01 July 2002, 01:07:59 UTC | This commit was manufactured by cvs2svn to create branch 'RELENG_4_4'. | 01 July 2002, 01:07:59 UTC |
7e66b2a | Jacques Vidrine | 26 June 2002, 21:57:43 UTC | Note FreeBSD-SA-02:28.resolv and patch level bump. | 26 June 2002, 21:57:43 UTC |
78debda | Julian Elischer | 26 June 2002, 21:43:44 UTC | Add the security fix FreeBSD-SA-02:28.resolv to the 4.4 branch This branch is the one that some really big security consious organisations are running.. It needs to be maintained. (already done: newvers.sh) Obtained from: Other branches | 26 June 2002, 21:43:44 UTC |
f518633 | Julian Elischer | 26 June 2002, 20:45:49 UTC | Update the patch level too. Forgotten by: whoever applied the patch.. I was committing it too and they beat me by about 5 seconds, but they didn't change this.. For the record 4.4 is very important to me specifically and FreeBSD genarally as a lot of MAJOR banks are running it internally. | 26 June 2002, 20:45:49 UTC |
70ffd38 | Jacques Vidrine | 29 May 2002, 19:00:04 UTC | Note FreeBSD-SA-02:27 and patch level bump. | 29 May 2002, 19:00:04 UTC |
a647c69 | Jacques Vidrine | 28 May 2002, 19:52:45 UTC | Back out previous commit. The bug which it was intended to address is a result of interaction with the syncache, but the latter does not exist on this branch. Reported by: silby | 28 May 2002, 19:52:45 UTC |
d552215 | Jacques Vidrine | 28 May 2002, 18:28:31 UTC | MFC src/sys/kern/uipc_socket.c rev 1.116 src/sys/kern/uipc_socket2.c rev 1.87, 1.94 Make sure that sockets undergoing accept filtering are aborted in a LRU fashion when the listen queue fills up. | 28 May 2002, 18:28:31 UTC |
ab95a27 | Jacques Vidrine | 28 May 2002, 18:28:22 UTC | Bump patch level. | 28 May 2002, 18:28:22 UTC |
a644061 | Jacques Vidrine | 15 May 2002, 16:07:38 UTC | Note 4.4-RELEASE-p12. | 15 May 2002, 16:07:38 UTC |
af04500 | Jacques Vidrine | 15 May 2002, 16:07:06 UTC | Bump patch level for k5su issue. | 15 May 2002, 16:07:06 UTC |
c20e675 | Jacques Vidrine | 15 May 2002, 13:04:00 UTC | MFC 1.206 src/UPDATING 1.6 src/kerberos5/usr.bin/k5su/Makefile 1.187 src/share/examples/etc/make.conf (etc/defaults/make.conf) 1.44 src/share/man/man5/make.conf.5 Turn on the set-user-ID bit for k5su if ENABLE_SUID_K5SU is defined. | 15 May 2002, 13:04:00 UTC |
237c1a6 | Jacques Vidrine | 09 May 2002, 17:41:05 UTC | MFC 1.312: Remove dangerous use of globbing. | 09 May 2002, 17:41:05 UTC |
d11fee5 | Bruce A. Mah | 02 May 2002, 20:37:12 UTC | Add cross-references to applicable security advisories. Also be more consistent about the format of the names we give for advisories. Approved by: nectar | 02 May 2002, 20:37:12 UTC |
f34dc5e | Jeroen Ruigrok/Asmodai | 30 April 2002, 08:55:29 UTC | Update patchlevel per current count. | 30 April 2002, 08:55:29 UTC |
6780c88 | Jacques Vidrine | 25 April 2002, 14:42:26 UTC | Note change for FreeBSD-SA-02:23.stdio. | 25 April 2002, 14:42:26 UTC |
59db446 | Jacques Vidrine | 22 April 2002, 21:38:45 UTC | Fix bogon introduced when MFCing: In FreeBSD 4.x, the second argument to vn_open is type `int', not `int *'. | 22 April 2002, 21:38:45 UTC |
0f90e5a | Jacques Vidrine | 21 April 2002, 13:10:50 UTC | MFC 1.137 src/sys/kern/kern_descrip.c 1.162 src/sys/kern/kern_exec.c 1.41 src/sys/sys/filedesc.h When exec'ing a set[ug]id program, make sure that the stdio file descriptors (0, 1, 2) are allocated by opening /dev/null for any which are not already open. | 21 April 2002, 13:10:50 UTC |
d833f04 | Jacques Vidrine | 16 April 2002, 20:59:45 UTC | Note fixes for: = mmap/msync bug which can panic the kernel. = TCP broadcast connection bug. | 16 April 2002, 20:59:45 UTC |
deff32e | Jacques Vidrine | 15 April 2002, 17:22:10 UTC | MFC 1.148, 1.149: The TCP code did not do sufficient checks on whether incoming packets were destined for a broadcast IP address. | 15 April 2002, 17:22:10 UTC |
fcd9a00 | Jacques Vidrine | 15 April 2002, 17:18:12 UTC | MFC 1.213: Fix mmap/msync bug which can panic the kernel. | 15 April 2002, 17:18:12 UTC |
0e1fb38 | Chris D. Faulhaber | 24 March 2002, 23:24:46 UTC | MFC 1.12: correct bug introduced in 1.11 where ZFREE was moved to a point after the structural members were clobbered by stores into a union'd structure. MFC 1.13: correct deflate window size check. | 24 March 2002, 23:24:46 UTC |
3c674f2 | Chris D. Faulhaber | 24 March 2002, 23:24:42 UTC | MFC sys/net/zlib.c 1.13: correct deflate window size check | 24 March 2002, 23:24:42 UTC |
30e3249 | Jacques Vidrine | 07 March 2002, 14:40:07 UTC | Add 4.4-RELEASEp9. | 07 March 2002, 14:40:07 UTC |
969db92 | Jacques Vidrine | 07 March 2002, 14:37:38 UTC | Bump patch level for FreeBSD-SA-02:13 (OpenSSH off-by-one bug). | 07 March 2002, 14:37:38 UTC |
e5a431f | Jacques Vidrine | 07 March 2002, 14:36:28 UTC | Update version string. | 07 March 2002, 14:36:28 UTC |
50c8238 | Jacques Vidrine | 07 March 2002, 14:34:17 UTC | MFC 1.8: Fix off-by-one error. | 07 March 2002, 14:34:17 UTC |
db6ed96 | Chris D. Faulhaber | 23 February 2002, 18:34:20 UTC | Note zlib fix and bzip2 update, bump patch level (-p8) | 23 February 2002, 18:34:20 UTC |
6e9a3db | Chris D. Faulhaber | 23 February 2002, 18:33:55 UTC | Bump patch level (-p8) for zlib fix and bzip2 update. | 23 February 2002, 18:33:55 UTC |
f21a26e | Chris D. Faulhaber | 23 February 2002, 18:33:21 UTC | MFC: update bzip2 to version 1.0.2 to fix insecure permissions during symlink dereferencing and a race condition while creating new files. | 23 February 2002, 18:33:21 UTC |
50a907a | Chris D. Faulhaber | 23 February 2002, 00:16:14 UTC | MFC 1.11: Error handling fixes for inflate. | 23 February 2002, 00:16:14 UTC |
3aafaaf | Chris D. Faulhaber | 23 February 2002, 00:15:50 UTC | MFC 1.3: Error handling fixes for inflate. | 23 February 2002, 00:15:50 UTC |
d7914e6 | cvs2svn | 04 February 2002, 19:23:42 UTC | This commit was manufactured by cvs2svn to create branch 'RELENG_4_4'. | 04 February 2002, 19:23:42 UTC |
efcdf99 | Jacques Vidrine | 29 January 2002, 17:44:37 UTC | This time for sure ... revision 1.3 was supposed to be on this branch. Don't use __FBSDID here because we don't have it. | 29 January 2002, 17:44:37 UTC |
a96f1bb | Warner Losh | 28 January 2002, 02:30:13 UTC | Note changes to standard-supfile, sdiff and gzip. We are now at p7. | 28 January 2002, 02:30:13 UTC |
0a9d20d | Jacques Vidrine | 28 January 2002, 01:29:51 UTC | MFC 1.2: Fix temporary file handling. | 28 January 2002, 01:29:51 UTC |
eeffbad | Jacques Vidrine | 28 January 2002, 01:29:22 UTC | MFC 1.6: Use mktemp(1) when creating temporary files. | 28 January 2002, 01:29:22 UTC |
9f71d69 | Crist J. Clark | 28 January 2002, 00:03:14 UTC | The 'standard-supfile' should track its own branch. Approved by: security-officer@ | 28 January 2002, 00:03:14 UTC |
8ba8adf | Warner Losh | 27 January 2002, 07:17:59 UTC | Move 4.3 header info. Add p3 and p4. | 27 January 2002, 07:17:59 UTC |
adafa70 | Jacques Vidrine | 23 January 2002, 23:05:54 UTC | Eliminate ptrace/exec race. MFC 1.191 src/sys/sys/proc.h MFC 1.44 src/sys/kern/kern_exec.c (execve) Add P_INEXEC flag to indicate that a process is currently exec'ing. sys/kern/sys_process.c (ptrace) sys/miscfs/procfs/... Do not allow debugging of a process during exec. | 23 January 2002, 23:05:54 UTC |
9c024f0 | Jacques Vidrine | 17 January 2002, 15:47:04 UTC | Bump patchlevel for fixes to k5su and fstatfs. | 17 January 2002, 15:47:04 UTC |
68bb3a3 | Jacques Vidrine | 17 January 2002, 15:46:11 UTC | MFC 1.216: Return EBADF if some vnode field has been reset to a NULL pointer. | 17 January 2002, 15:46:11 UTC |
f8e954e | Jacques Vidrine | 17 January 2002, 15:45:27 UTC | MFC 1.1.1.4: Don't use getlogin() to determine whether we are root. | 17 January 2002, 15:45:27 UTC |
97c3cdd | Hiroki Sato | 03 January 2002, 17:42:38 UTC | Fix the footer in Japanese which is likely to mislead the readers. | 03 January 2002, 17:42:38 UTC |
e382a9c | Jacques Vidrine | 21 December 2001, 19:47:50 UTC | Bump patchlevel for fix to pw(8). | 21 December 2001, 19:47:50 UTC |
6238cf7 | Jacques Vidrine | 21 December 2001, 15:23:04 UTC | MFC 1.18: Use correct mode for temporary file. | 21 December 2001, 15:23:04 UTC |
1b1321e | Wes Peters | 07 December 2001, 20:58:46 UTC | MFC directory permission fix. Approved by: security-officer | 07 December 2001, 20:58:46 UTC |