CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2015/08/24 03:35:36
Modified files:
emulators/qemu : Tag: OPENBSD_5_8 Makefile
Added files:
emulators/qemu/patches: Tag: OPENBSD_5_8 patch-hw_ide_atapi_c
patch-hw_net_rtl8139_c
patch-hw_scsi_scsi-bus_c
patch-hw_timer_i8254_c patch-net_slirp_c
patch-ui_vnc-ws_c patch-ui_vnc-ws_h
patch-ui_vnc_h
Log message:
Backport SECURITY fixes for qemu
ide/atapi: Fix START STOP UNIT command completion
rtl8139: avoid nested ifs in IP header parsing (CVE-2015-5165)
rtl8139: drop tautologous if (ip) {...} statement (CVE-2015-5165)
rtl8139: skip offload on short Ethernet/IP header (CVE-2015-5165)
rtl8139: check IP Header Length field (CVE-2015-5165)
rtl8139: check IP Total Length field (CVE-2015-5165)
rtl8139: skip offload on short TCP header (CVE-2015-5165)
rtl8139: check TCP Data Offset field (CVE-2015-5165)
scsi: fix buffer overflow in scsi_req_parse_cdb (CVE-2015-5158)
slirp: use less predictable directory name in /tmp for smb config
(CVE-2015-4037)
i8254: fix out-of-bounds memory access in pit_ioport_read() (CVE-2015-3214)
incrementally decode websocket frames (CVE-2015-1779)
limit size of HTTP headers from websockets clients (CVE-2015-1779)
