---
- branch: netbsd-8
  date: Sun Jun 24 09:32:03 UTC 2018
  files:
  - new: 1.40.20.1
    old: '1.40'
    path: src/usr.sbin/installboot/arch/i386.c
    pathrev: src/usr.sbin/installboot/arch/i386.c@1.40.20.1
    type: modified
  id: 20180624T093203Z.07f2c275b6ce9560e140b2abbc8575e68250e306
  log: "Pull up following revision(s) (requested by kamil in ticket #898):\n\n\tusr.sbin/installboot/arch/i386.c:
    revision 1.41\n\nFix integer overflow in installboot(8)\nAdd a sanity check of
    the disk_buf first three bytes. The original code on\na disk with nul bytes was
    causing integer overflow and thus calling the\nmemcmp(3) functin in is_zero()
    with enormous length.\nVerity that the 0th byte is JMP, 1th a signed byte >= 9
    to prevent overflow\nand 2th byte NOP.\n\nAdd a comment explaining the check.\n\nDetected
    with MKSANITIZER and ASan.\n"
  module: src
  subject: 'CVS commit: [netbsd-8] src/usr.sbin/installboot/arch'
  unixtime: '1529832723'
  user: martin