CVS commit: [netbsd-5-2] src

Sat, 15 Nov 2014 00:13:29 -0800 

Module Name:    src
Committed By:   snj
Date:           Sat Nov 15 08:13:01 UTC 2014

Modified Files:
        src/distrib/notes/common [netbsd-5-2]: main
        src/doc [netbsd-5-2]: CHANGES-5.2.3 LAST_MINUTE
        src/sys/sys [netbsd-5-2]: param.h

Log Message:
Welcome to 5.2.3!


To generate a diff of this commit:
cvs rdiff -u -r1.425.2.16.2.7 -r1.425.2.16.2.8 src/distrib/notes/common/main
cvs rdiff -u -r1.1.2.25 -r1.1.2.26 src/doc/CHANGES-5.2.3
cvs rdiff -u -r1.2.30.3.2.2 -r1.2.30.3.2.3 src/doc/LAST_MINUTE
cvs rdiff -u -r1.330.4.18.2.5 -r1.330.4.18.2.6 src/sys/sys/param.h

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


Modified files:

Index: src/distrib/notes/common/main
diff -u src/distrib/notes/common/main:1.425.2.16.2.7 src/distrib/notes/common/main:1.425.2.16.2.8
--- src/distrib/notes/common/main:1.425.2.16.2.7	Fri Nov  7 08:03:09 2014
+++ src/distrib/notes/common/main	Sat Nov 15 08:13:01 2014
@@ -1,4 +1,4 @@
-.\"	$NetBSD: main,v 1.425.2.16.2.7 2014/11/07 08:03:09 msaitoh Exp $
+.\"	$NetBSD: main,v 1.425.2.16.2.8 2014/11/15 08:13:01 snj Exp $
 .\"
 .\" Copyright (c) 1999-2008 The NetBSD Foundation, Inc.
 .\" All rights reserved.
@@ -50,7 +50,7 @@
 .as MACHINE_LIST " sgimips shark sparc sparc64 sun2 sun3 vax x68k xen zaurus .
 .so \*[.CURDIR]/../common/macros
 .
-.Dd January 18, 2014
+.Dd November 15, 2014
 .Dt INSTALL 8
 .Os NetBSD
 .Sh NAME
@@ -452,47 +452,91 @@ possible, it's likely that
 wouldn't exist.
 .
 .if \n[FOR_RELEASE] \{\
+.Ss Changes Between The NetBSD 5.2.2 and 5.2.3 Releases
+.Pp
+.Nx
+\*V
+is the third critical/security update of the NetBSD 5.2 release branch.
+It represents a selected subset of fixes deemed critical for security
+or stability reasons.
 .Pp
 The complete list of changes can be found in the
-CHANGES-5.2.2:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/NetBSD-5.2.2/CHANGES-5.2.2
-file in the top level directory of the NetBSD 5.2.2 release tree. An abbreviated list is as follows:
+CHANGES-5.2.3:
+.Lk http://ftp.NetBSD.org/pub/NetBSD/NetBSD-5.2.3/CHANGES-5.2.3
+file in the top level directory of the NetBSD 5.2.3 release tree. An abbreviated list is as follows:
 .Ss2 Security Advisory Fixes
 .(bullet
-NetBSD-SA2013-010:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2013-010.txt.asc
-Use after free in Xserver handling of ImageText requests (CVE-2013-4396)
-.It
-NetBSD-SA2013-011:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2013-011.txt.asc
-embryonic TCP sockets local DoS
-.It
-NetBSD-SA2013-012:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2013-012.txt.asc
-Router Advertisement sysctl local Denial of Service
-.It
-NetBSD-SA2014-001:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2014-001.txt.asc
-Stack buffer overflow in libXfont (CVE-2013-6462)
-.It
-NetBSD-SA2014-002:
-.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2014-002.txt.asc
-ntpd used as DDoS amplifier
+NetBSD-SA2014-005:
+.Lk http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2014-005.txt.asc
+libXfont multiple vulnerabilities
+.It
+NetBSD-SA2014-006:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-006.txt.asc
+Multiple OpenSSL vulnerabilities
+.It
+NetBSD-SA2014-007:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-007.txt.asc
+bozohttpd basic http authentication bypass
+.It
+NetBSD-SA2014-008:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc
+Multiple OpenSSL vulnerabilities
+.It
+NetBSD-SA2014-010:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-010.txt.asc
+Multiple vulnerabilities in the compatibility layers
+.It
+NetBSD-SA2014-011:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-011.txt.asc
+User-controlled memory allocation in the
+.Xr modctl 2
+system call
+.It
+NetBSD-SA2014-012:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-012.txt.asc
+Memory leak in the
+.Xr setsockopt 2
+system call
+.It
+NetBSD-SA2014-013:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-013.txt.asc
+.Xr ftp 1
+can be made to execute arbitrary commands
+.It
+NetBSD-SA2014-014:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-014.txt.asc
+Multiple vulnerabilities in the
+.Xr mount 2
+system call
+.It
+NetBSD-SA2014-015:
+.Lk http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-015.txt.asc
+OpenSSL and SSLv3 vulnerabilities
 .bullet)
 .
 .Pp
-Advisories prior to NetBSD-SA2013-010 do not affect
-NetBSD 5.2.2:
-.Lk http://www.NetBSD.org/support/security/patches-5.2.2.html .
-.Ss2 Other Security Fixes
+Advisories prior to NetBSD-SA2014-005 do not affect
+NetBSD 5.2.3:
+.Lk http://www.NetBSD.org/support/security/patches-5.2.3.html .
+.Ss2 Kernel
 .(bullet
-bind: Fix CVE-2014-0591. 
+Reject unaligned PCI config register ioctl requests before we kassert.
 .bullet)
 .
-.Ss2 Kernel
+.Ss2 Miscellaneous
 .(bullet
-Xen: remove a bogus diagostic message spamming the console.  (PR#46313):
-.Lk http://gnats.netbsd.org/46313     
+Update to tzdata2014f.
+.It
+Update root.cache to 2014060201.
+.It
+For consistency with newer branches, ISO images built with
+.Dq build.sh iso-images
+are now named
+.Pa NetBSD-\*[Lt]version\*[Gt]-\*[Lt]machine\*[Gt].iso
+and placed under the
+.Pa images
+directory instead of
+.Pa iso .
 .bullet)
 .
 .\} \" \n[FOR_RELEASE]
@@ -579,6 +623,8 @@ Changes between the 5.1 and 5.2 releases
 Changes between the 5.2 and 5.2.1 releases.
 .It Li CHANGES-5.2.2
 Changes between the 5.2.1 and 5.2.2 releases.
+.It Li CHANGES-5.2.3
+Changes between the 5.2.2 and 5.2.3 releases.
 .It Li CHANGES.prev
 Changes in previous
 .Nx

Index: src/doc/CHANGES-5.2.3
diff -u src/doc/CHANGES-5.2.3:1.1.2.25 src/doc/CHANGES-5.2.3:1.1.2.26
--- src/doc/CHANGES-5.2.3:1.1.2.25	Sun Nov  9 05:28:52 2014
+++ src/doc/CHANGES-5.2.3	Sat Nov 15 08:13:01 2014
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-5.2.3,v 1.1.2.25 2014/11/09 05:28:52 msaitoh Exp $
+# $NetBSD: CHANGES-5.2.3,v 1.1.2.26 2014/11/15 08:13:01 snj Exp $
 
 A complete list of changes from the NetBSD 5.2.2 release to the NetBSD 5.2.3
 release:
@@ -376,3 +376,11 @@ share/man/man7/release.7			1.32
 	Change release ISO's more meaningful names like NetBSD-5.2.3-i386.iso
 	instead of i386cd.iso. Fix PR# install/44593.
 	[snj, ticket #1931]
+
+distrib/notes/common/main			patched by hand
+doc/LAST_MINUTE					patched by hand
+sys/sys/param.h					patched by hand
+
+	Welcome to 5.2.3!
+	[snj]
+

Index: src/doc/LAST_MINUTE
diff -u src/doc/LAST_MINUTE:1.2.30.3.2.2 src/doc/LAST_MINUTE:1.2.30.3.2.3
--- src/doc/LAST_MINUTE:1.2.30.3.2.2	Fri Jan 17 17:00:03 2014
+++ src/doc/LAST_MINUTE	Sat Nov 15 08:13:01 2014
@@ -1,6 +1,6 @@
-#	$NetBSD: LAST_MINUTE,v 1.2.30.3.2.2 2014/01/17 17:00:03 bouyer Exp $
+#	$NetBSD: LAST_MINUTE,v 1.2.30.3.2.3 2014/11/15 08:13:01 snj Exp $
 
-This file contains important information on the NetBSD 5.2.2 release that
+This file contains important information on the NetBSD 5.2.3 release that
 did not make it into the main documentation.
 
 [all]

Index: src/sys/sys/param.h
diff -u src/sys/sys/param.h:1.330.4.18.2.5 src/sys/sys/param.h:1.330.4.18.2.6
--- src/sys/sys/param.h:1.330.4.18.2.5	Mon Jan 27 21:21:24 2014
+++ src/sys/sys/param.h	Sat Nov 15 08:13:01 2014
@@ -1,4 +1,4 @@
-/*	$NetBSD: param.h,v 1.330.4.18.2.5 2014/01/27 21:21:24 bouyer Exp $	*/
+/*	$NetBSD: param.h,v 1.330.4.18.2.6 2014/11/15 08:13:01 snj Exp $	*/
 
 /*-
  * Copyright (c) 1982, 1986, 1989, 1993
@@ -63,7 +63,7 @@
  *	2.99.9		(299000900)
  */
 
-#define	__NetBSD_Version__	502000201	/* NetBSD 5.2.2_PATCH */
+#define	__NetBSD_Version__	502000300	/* NetBSD 5.2.3 */
 
 #define __NetBSD_Prereq__(M,m,p) (((((M) * 100000000) + \
     (m) * 1000000) + (p) * 100) <= __NetBSD_Version__)

Reply via email to