OpenBSD src changes summary for 2016-07-08 ==========================================
gnu/usr.bin/perl sys/dev/mii sys/dev/ofw usr.bin/less usr.bin/mandoc usr.bin/ssh usr.sbin/vmd usr.sbin/ypbind == gnu =============================================================== 01/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu usr.bin/perl ~ patchlevel.h > The XSLoader issue has been assigned CVE-2016-6185 (millert@) == sys =============================================================== 02/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys dev/mii ~ miidevs ~ atphy.c > The Atheros PHYs with model ID 7 are the AR8031/AR8033/AR8035 family. > Identify as AR8035 since that one has the lowest revision number. > ok mlarkin@, millert@ (kettenis@) ~ miidevs.h > regen (kettenis@) dev/ofw ~ fdt.c > Fix check for "name" property. Restores synthesised "name" proprties in > eeprom -p output that were lost in revision 1.13. (kettenis@) == usr.bin =========================================================== 03/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin less ~ screen.c > Pass errret pointer to setupterm() to prevent setupterm() > from calling exit() when given an unknown terminal type. > From Anton Lindqvist, who also upstreamed the fix. (millert@) mandoc ~ tag.c > POSIX requires that a process calling tcsetpgrp(3) from the background > gets a SIGTTOU signal. In that case, do not stop. > Portability issue found while testing on commercial Solaris 9/10/11. > Thanks to opencsw.org for providing me with a testing environment. > (schwarze@) ~ main.c ~ main.h ~ term_ascii.c > ISO C99 7.19.2.5 doesn't like mixing putchar(3) and putwchar(3) on > the same stream, and actually, it fails spectacularly on glibc. > Portability issue pointed out by Svyatoslav Mishyn <juef at openmailbox > dot org> after testing on Void Linux. (schwarze@) ssh ~ mac.c ~ mac.h ~ packet.c > Improve crypto ordering for Encrypt-then-MAC (EtM) mode MAC algorithms. > Previously we were computing the MAC, decrypting the packet and then > checking the MAC. This gave rise to the possibility of creating a > side-channel oracle in the decryption step, though no such oracle has > been identified. > This adds a mac_check() function that computes and checks the MAC in > one pass, and uses it to advance MAC checking for EtM algorithms to > before payload decryption. > Reported by Jean Paul Degabriele, Kenny Paterson, Torben Hansen and > Martin Albrecht. feedback and ok markus@ (djm@) == usr.sbin ========================================================== 04/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin vmd ~ vmm.c > Return 0 on read from PIT control port. Intel explicitly says this is not > supported, and it looks like other emulators/hypervisors do a variety of > different things here. Most return 0, but at least one might return random > garbage. Returning 0 seems safest here, but leave a warning in place for > the logs in case a guest VM does this. (mlarkin@) ypbind ~ ypbind.c > When making a copy of svc_pollfd, use the correct size. > Also pass the correct fd count to svc_getreq_poll(). > OK jca@ (millert@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
