aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Correct a remote denial-of-service attack in named(8).releng/4.4Jacques Vidrine2003-11-274-5/+14
| | | | Notes: svn path=/releng/4.4/; revision=123008
* MFS 1.10.2.5: Unbreak read/write behavior (introduced in previous revision).Jacques Vidrine2003-10-041-3/+1
| | | | Notes: svn path=/releng/4.4/; revision=120752
* Merge from RELENG_4: kern_subr.c 1.31.2.3, procfs_dbregs.c 1.4.2.4,Jacques Vidrine2003-10-0310-122/+47
| | | | | | | | | | procfs_fpregs.c 1.11.2.4, procfs_regs.c 1.10.2.4, procfs_rlimit.c 1.5.2.1, procfs_status.c 1.20.2.5, uio.h 1.11.2.2, linprocfs_misc.c 1.3.2.9. Correct several integer underflows/overflows in procfs and linprocfs. Notes: svn path=/releng/4.4/; revision=120689
* MFS 1.55.2.11: Correct a reference counting bug in readv(2).Jacques Vidrine2003-10-023-7/+10
| | | | Notes: svn path=/releng/4.4/; revision=120667
* Bump patch level for updated arplookup fix.Jacques Vidrine2003-09-252-1/+4
| | | | Notes: svn path=/releng/4.4/; revision=120433
* Fix a logic error in the check to see if arplookup() should free the route.Bruce M Simpson2003-09-241-1/+1
| | | | | | | | Noticed by: Mike Hogsett Reviewed by: ru Notes: svn path=/releng/4.4/; revision=120420
* Fix a bug in arplookup(), whereby a hostile party on a locallyBruce M Simpson2003-09-233-7/+20
| | | | | | | | | | | attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security <product-security@apple.com> Notes: svn path=/releng/4.4/; revision=120385
* MFC: sendmail address parsing bug fixGregory Neil Shapiro2003-09-174-2/+9
| | | | | | | Approved by: so (nectar) Notes: svn path=/releng/4.4/; revision=120179
* MFC buffer.c 1.2, channels.c 1.16, deattack.c 1.1.1.6,Jacques Vidrine2003-09-179-23/+42
| | | | | | | | misc.c 1.1.1.5 (->scp.c), session.c 1.41, ssh-agent.c 1.19: Correct more cases of allocation size bookkeeping errors. Notes: svn path=/releng/4.4/; revision=120168
* MFC buffer.c 1.1.1.7: Do not record expanded size before attempting toJacques Vidrine2003-09-164-4/+13
| | | | | | | reallocate associated memory. Notes: svn path=/releng/4.4/; revision=120133
* Merge from RELENG_4_7 1.51.2.4.2.2:Jacques Vidrine2003-08-121-1/+1
| | | | | | | Fix typo: `uap->data' versus `data'. Notes: svn path=/releng/4.4/; revision=118841
* MFC 1.24: Validate the iBCS2 statfs(2) length parameter.Jacques Vidrine2003-08-103-1/+8
| | | | Notes: svn path=/releng/4.4/; revision=118755
* MFC sys_process.c 1.113, spigot.c 1.60:Jacques Vidrine2003-08-104-2/+8
| | | | | | | | Add or correct range checking of signal numbers in system calls and ioctls. Notes: svn path=/releng/4.4/; revision=118753
* realpath(3) bug fix: There was an off-by-one error in computing theJacques Vidrine2003-08-033-4/+8
| | | | | | | size of the resulting canonical path. Notes: svn path=/releng/4.4/; revision=118401
* MF4.6Julian Elischer2003-04-044-10/+19
| | | | | | | | | | Security update FreeBSD-SA-03:05.xdr Approved by: re@ (blanket agreement for 4.4) Obtained from: 4.6 Notes: svn path=/releng/4.4/; revision=113095
* Update FreeBSD Security Advisory NumberGregory Neil Shapiro2003-03-291-1/+1
| | | | | | | Approved by: so (nectar) Notes: svn path=/releng/4.4/; revision=112825
* sendmail parsing buffer overflow fixGregory Neil Shapiro2003-03-295-4/+20
| | | | | | | | | Advisory number to be filled in later Approved by: so (nectar) Notes: svn path=/releng/4.4/; revision=112818
* Put in the cvserver patches.. (MF4.6)Julian Elischer2003-03-053-6/+9
| | | | | | | | | | SA: FreeBSD-SA-03:01.cvs Approved by: security officer (nectar@) Obtained from: FreeBSD-SA-03:01.cvs Notes: svn path=/releng/4.4/; revision=111895
* FreeBSD-SA-03:04.sendmail: sendmail header parsing buffer overflowGregory Neil Shapiro2003-03-037-89/+138
| | | | | | | Approved by: security-officer (nectar) Notes: svn path=/releng/4.4/; revision=111828
* MFC 1.114: Fix a file descriptor leak in fpathconf(2).Jacques Vidrine2003-01-073-5/+13
| | | | Notes: svn path=/releng/4.4/; revision=108880
* Commit SA-02:42 to the 4.4 branchJulian Elischer2002-11-226-51/+123
| | | | | | | | | bump the release number to p31 so we can tell if it's been done or not. Approved by: security officer. Notes: svn path=/releng/4.4/; revision=107176
* Correct recent name server vulnerabilities as documented atJacques Vidrine2002-11-1411-22/+64
| | | | | | | | | | <URL:http://www.isc.org/products/BIND/bind-security.html> and <URL:http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21469>. Obtained from: ISC Notes: svn path=/releng/4.4/; revision=106897
* MFC: Fix smrsh bypass bug.Gregory Neil Shapiro2002-10-263-1/+37
| | | | | | | Approved by: security-officer Notes: svn path=/releng/4.4/; revision=106004
* Update UPDATING and bump patch level for kadmind fix.Chris D. Faulhaber2002-10-232-1/+4
| | | | Notes: svn path=/releng/4.4/; revision=105796
* MFC kadm_ser_wrap.c:1.1.1.4: fix buffer overflowAssar Westerlund2002-10-233-10/+19
| | | | | | | | | | MFC updating kerberosIV and kerberos5 versions consistenly Approved by: security-officer Obtained from: kth-krb CVS Notes: svn path=/releng/4.4/; revision=105794
* import 1.27 to fix buffer overflow:Assar Westerlund2002-10-221-1/+8
| | | | | | | | | | check size of rlen Approved by: security-officer Obtained from: Heimdal CVS Notes: svn path=/releng/4.4/; revision=105676
* MFC src/lib/libkvm/kvm.c 1.23: mark file descriptors close-on-exec.Jacques Vidrine2002-09-131-1/+1
| | | | Notes: svn path=/releng/4.4/; revision=103298
* MFC src/lib/libkvm/kvm.c 1.23: mark file descriptors close-on-exec.Jacques Vidrine2002-09-132-0/+17
| | | | Notes: svn path=/releng/4.4/; revision=103292
* Add cross-reference for SA-02:38.Bruce A. Mah2002-09-051-1/+1
| | | | | | | Approved by: security-officer (implicitly) Notes: svn path=/releng/4.4/; revision=102970
* MFC of upc_syscalls:1.123,1.124 and vesa.c:1.37.Jacques Vidrine2002-08-134-2/+18
| | | | | | | Submitted by: Silvio Cesare <silvio@qualys.com> (1.123, 1.37) Notes: svn path=/releng/4.4/; revision=101797
* Add references to FreeBSD-SA-02:33.openssl and FreeBSD-SA-02:35.ffs to theJacques Vidrine2002-08-061-2/+2
| | | | | | | | | applicable entries. Requested by: matusita Notes: svn path=/releng/4.4/; revision=101434
* MFC src/crypto/openssl/crypto/asn1/asn1_lib.c rev 1.1.1.6:Jacques Vidrine2002-08-053-2/+6
| | | | | | | Correct a bug in the ASN.1 decoder. Notes: svn path=/releng/4.4/; revision=101389
* MFS: check far end of pipe.Dag-Erling Smørgrav2002-08-053-1/+8
| | | | Notes: svn path=/releng/4.4/; revision=101384
* Add cross-reference for SA-02:33.Bruce A. Mah2002-08-041-1/+1
| | | | | | | Approved by: security-officer (implicitly) Notes: svn path=/releng/4.4/; revision=101344
* Update UPDATING and bump patch level for NFS fix.Dag-Erling Smørgrav2002-08-012-1/+4
| | | | Notes: svn path=/releng/4.4/; revision=101188
* MFC (1.78): avoid infinite loop upon receipt of zero-length RPCDag-Erling Smørgrav2002-08-011-1/+5
| | | | Notes: svn path=/releng/4.4/; revision=101179
* The fix applied to the XDR decoder in lib/libc/xdr/xdr_array.c revisionJacques Vidrine2002-08-013-3/+6
| | | | | | | 1.8.6.1 was incorrect. Notes: svn path=/releng/4.4/; revision=101151
* Correct bounds checking error in FFS filesize limits.Chris D. Faulhaber2002-07-313-1/+7
| | | | Notes: svn path=/releng/4.4/; revision=101098
* MFC: OpenSSL 0.9.6eJacques Vidrine2002-07-31424-31273/+7026
| | | | Notes: svn path=/releng/4.4/; revision=101087
* Add missing header <limits.h> for UINT_MAX introducedJacques Vidrine2002-07-311-0/+1
| | | | | | | in previous commit. Notes: svn path=/releng/4.4/; revision=101063
* Remove `By this count' line ... it provides no additional information and IJacques Vidrine2002-07-311-1/+0
| | | | | | | always forget to update it. Notes: svn path=/releng/4.4/; revision=101052
* MFC lib/libc/xdr/xdr_array.c 1.11: Patch to fix bounds checking/overflow.Jacques Vidrine2002-07-313-5/+9
| | | | Notes: svn path=/releng/4.4/; revision=101051
* Correct awkward wording in recent pppd entry.Jacques Vidrine2002-07-311-1/+1
| | | | Notes: svn path=/releng/4.4/; revision=101050
* MFC 1.20: Use fchmod() to restore the tty modes.Jacques Vidrine2002-07-303-3/+6
| | | | Notes: svn path=/releng/4.4/; revision=100965
* MFC sys/kern/kern_exec.c 1.178: Fix ordering of set-(user|group)-ID checks.Jacques Vidrine2002-07-303-3/+8
| | | | Notes: svn path=/releng/4.4/; revision=100952
* This commit was manufactured by cvs2svn to create branch 'RELENG_4_4'.cvs2svn2002-07-306-0/+312
| | | | Notes: svn path=/releng/4.4/; revision=100940
* Correct date of BIND 8.3.3 merge, reformat.Bruce A. Mah2002-07-181-2/+3
| | | | | | | | | Cross-reference SA-02:28 where appropriate. Approved by: security-officer (implicitly) Notes: svn path=/releng/4.4/; revision=100341
* Notate the upgrade to BIND 8.3.3Doug Barton2002-07-181-0/+2
| | | | | | | Approved by: security-officer Notes: svn path=/releng/4.4/; revision=100302
* Bump patchlevel to reflect upgrade to BIND 8.3.3Doug Barton2002-07-181-1/+1
| | | | | | | Approved by: security-officer Notes: svn path=/releng/4.4/; revision=100300
* Add the hex.c source to the build of this library.Doug Barton2002-07-151-1/+1
| | | | | | | Approved by: security-officer Notes: svn path=/releng/4.4/; revision=100064