OpenBSD src changes summary for 2017-09-24 ==========================================
usr.bin/ctfconv usr.bin/ssh == usr.bin =========================================================== 01/01 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin ctfconv ~ parse.c > Ignore DW_FORM_strp with size larger than elf section buffer > fixes accessing memory out of bounds that led to a segfault. > Found with afl. ok mpi@ (jsg@) ~ parse.c > Handle parse_base() returning NULL for DW_TAG_base_type to avoid > attemping to insert a NULL iterator leading to a NULL deref crash. > Found with afl. ok mpi@ (jsg@) ssh ~ channels.c > write the correct buffer when tunnel forwarding; doesn't matter > on OpenBSD (they are the same) but does matter on portable where > we use an output filter to translate os-specific tun/tap headers (djm@) ~ channels.c > fix inverted test on channel open failure path that "upgraded" a > transient failure into a fatal error; reported by sthen and also seen > by benno@; ok sthen@ (djm@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
