| @@ -1,41 +1,46 @@ | | | @@ -1,41 +1,46 @@ |
| 1 | # $NetBSD: CHANGES-5.1.1,v 1.1.2.5 2011/01/07 19:14:26 riz Exp $ | | 1 | # $NetBSD: CHANGES-5.1.1,v 1.1.2.6 2011/01/08 00:53:09 riz Exp $ |
| 2 | | | 2 | |
| 3 | A complete list of changes from the NetBSD 5.1 release to the NetBSD 5.1.1 | | 3 | A complete list of changes from the NetBSD 5.1 release to the NetBSD 5.1.1 |
| 4 | release: | | 4 | release: |
| 5 | | | 5 | |
| 6 | gnu/usr.bin/groff/tmac/mdoc.local patched by hand | | 6 | gnu/usr.bin/groff/tmac/mdoc.local patched by hand |
| 7 | sys/sys/param.h patched by hand | | 7 | sys/sys/param.h patched by hand |
| 8 | | | 8 | |
| 9 | Welcome to 5.1.0_PATCH. | | 9 | Welcome to 5.1.0_PATCH. |
| 10 | [riz] | | 10 | [riz] |
| 11 | | | 11 | |
| 12 | crypto/dist/openssl/ssl/t1_lib.c patch | | 12 | crypto/dist/openssl/ssl/t1_lib.c patch |
| 13 | | | 13 | |
| 14 | Fix a race condition. (CVE-2010-3864) | | 14 | Fix a race condition. (CVE-2010-3864) |
| 15 | [christos, ticket #1479] | | 15 | [christos, ticket #1479] |
| 16 | | | 16 | |
| 17 | sys/kern/vfs_wapbl.c 1.38 via patch | | 17 | sys/kern/vfs_wapbl.c 1.38 via patch |
| 18 | | | 18 | |
| 19 | Fix an error that can lead to file system corruption and | | 19 | Fix an error that can lead to file system corruption and |
| 20 | freeing free block" panics. | | 20 | freeing free block" panics. |
| 21 | [hannken, ticket #1477] | | 21 | [hannken, ticket #1477] |
| 22 | | | 22 | |
| 23 | crypto/external/bsd/openssl/dist/ssl/s3_clnt.c 1.3 via patch | | 23 | crypto/external/bsd/openssl/dist/ssl/s3_clnt.c 1.3 via patch |
| 24 | crypto/external/bsd/openssl/dist/ssl/s3_srvr.c 1.6 via patch | | 24 | crypto/external/bsd/openssl/dist/ssl/s3_srvr.c 1.6 via patch |
| 25 | | | 25 | |
| 26 | openssl security patch of the day: | | 26 | openssl security patch of the day: |
| 27 | Fix a flaw in the OpenSSL SSL/TLS server code where an old bug | | 27 | Fix a flaw in the OpenSSL SSL/TLS server code where an old bug |
| 28 | workaround allows malicous clients to modify the stored session cache | | 28 | workaround allows malicous clients to modify the stored session cache |
| 29 | ciphersuite. In some cases the ciphersuite can be downgraded to a | | 29 | ciphersuite. In some cases the ciphersuite can be downgraded to a |
| 30 | weaker one on subsequent connections. See | | 30 | weaker one on subsequent connections. See |
| 31 | http://www.openssl.org/news/secadv_20101202.txt | | 31 | http://www.openssl.org/news/secadv_20101202.txt |
| 32 | (CVE-2010-4180) | | 32 | (CVE-2010-4180) |
| 33 | [drochner, ticket #1509] | | 33 | [drochner, ticket #1509] |
| 34 | | | 34 | |
| 35 | crypto/external/bsd/openssl/dist/ssl/t1_lib.c 1.3 via patch | | 35 | crypto/external/bsd/openssl/dist/ssl/t1_lib.c 1.3 via patch |
| 36 | | | 36 | |
| 37 | fix bug introduced by last security patch, from upstream CVS: | | 37 | fix bug introduced by last security patch, from upstream CVS: |
| 38 | Don't assume a decode error if session tlsext_ecpointformatlist is | | 38 | Don't assume a decode error if session tlsext_ecpointformatlist is |
| 39 | not NULL: it can be legitimately set elsewhere. | | 39 | not NULL: it can be legitimately set elsewhere. |
| 40 | [drochner, ticket #1510] | | 40 | [drochner, ticket #1510] |
| 41 | | | 41 | |
| | | 42 | external/mit/xorg/tools/bdftopcf/Makefile 1.5 |
| | | 43 | |
| | | 44 | Disable bzip2 support in tools bdftopcf(1). PR#44138. |
| | | 45 | [tsutsui, ticket #1512] |
| | | 46 | |