| @@ -1,56 +1,63 @@ | | | @@ -1,56 +1,63 @@ |
1 | # $NetBSD: CHANGES-5.1.4,v 1.1.2.7 2014/01/06 19:29:05 bouyer Exp $ | | 1 | # $NetBSD: CHANGES-5.1.4,v 1.1.2.8 2014/01/07 18:08:15 bouyer Exp $ |
2 | | | 2 | |
3 | A complete list of changes from the NetBSD 5.1.2 release to the NetBSD 5.1.3 | | 3 | A complete list of changes from the NetBSD 5.1.2 release to the NetBSD 5.1.3 |
4 | release: | | 4 | release: |
5 | | | 5 | |
6 | doc/README.files patched by hand | | 6 | doc/README.files patched by hand |
7 | gnu/usr.bin/groff/tmac/mdoc.local patched by hand | | 7 | gnu/usr.bin/groff/tmac/mdoc.local patched by hand |
8 | sys/sys/param.h patched by hand | | 8 | sys/sys/param.h patched by hand |
9 | | | 9 | |
10 | Welcome to 5.1.3_PATCH. | | 10 | Welcome to 5.1.3_PATCH. |
11 | [jdc] | | 11 | [jdc] |
12 | | | 12 | |
13 | xsrc/external/mit/xorg-server/dist/dix/dixfonts.c 1.2 via patch | | 13 | xsrc/external/mit/xorg-server/dist/dix/dixfonts.c 1.2 via patch |
14 | xsrc/xfree/xc/programs/Xserver/dix/dixfonts.c 1.4 via patch | | 14 | xsrc/xfree/xc/programs/Xserver/dix/dixfonts.c 1.4 via patch |
15 | | | 15 | |
16 | Fix CVE-2013-4396 using a patch from Alan Coopersmith: | | 16 | Fix CVE-2013-4396 using a patch from Alan Coopersmith: |
17 | Save a pointer to the passed in closure structure before copying it | | 17 | Save a pointer to the passed in closure structure before copying it |
18 | and overwriting the *c pointer to point to our copy instead of the | | 18 | and overwriting the *c pointer to point to our copy instead of the |
19 | original. If we hit an error, once we free(c), reset c to point to | | 19 | original. If we hit an error, once we free(c), reset c to point to |
20 | the original structure before jumping to the cleanup code that | | 20 | the original structure before jumping to the cleanup code that |
21 | references *c. | | 21 | references *c. |
22 | [spz, ticket #966] | | 22 | [spz, ticket #966] |
23 | | | 23 | |
24 | sys/arch/xen/xen/evtchn.c 1.70 | | 24 | sys/arch/xen/xen/evtchn.c 1.70 |
25 | | | 25 | |
26 | Remove the "evtchn_do_event: handler %p didn't lower ipl %d %d\n" | | 26 | Remove the "evtchn_do_event: handler %p didn't lower ipl %d %d\n" |
27 | printf as analysis shows it actually isn't a bug in the handler, | | 27 | printf as analysis shows it actually isn't a bug in the handler, |
28 | but related to spin mutexes. Fixes port-xen/46313 | | 28 | but related to spin mutexes. Fixes port-xen/46313 |
29 | [bouyer, ticket #1890] | | 29 | [bouyer, ticket #1890] |
30 | | | 30 | |
31 | sys/netinet6/nd6.c 1.146 | | 31 | sys/netinet6/nd6.c 1.146 |
32 | usr.sbin/ndp/ndp.c 1.42 | | 32 | usr.sbin/ndp/ndp.c 1.42 |
33 | | | 33 | |
34 | Instead of voodo casts use simple byte pointer arithmetic and memcpy to | | 34 | Instead of voodo casts use simple byte pointer arithmetic and memcpy to |
35 | create the "packed" binary format we pass out to userland when querying | | 35 | create the "packed" binary format we pass out to userland when querying |
36 | the router/prefix list. | | 36 | the router/prefix list. |
37 | Simplify code to print the router/prefix list: use memcpy and local | | 37 | Simplify code to print the router/prefix list: use memcpy and local |
38 | structs properly aligned on the stack to decode the binary format | | 38 | structs properly aligned on the stack to decode the binary format |
39 | passed by the kernel - instead of (bogusly) assuming the format will | | 39 | passed by the kernel - instead of (bogusly) assuming the format will |
40 | obey all local alignement requirements. | | 40 | obey all local alignement requirements. |
41 | [martin, ticket #1892] | | 41 | [martin, ticket #1892] |
42 | | | 42 | |
43 | etc/ntp.conf 1.16, 1.17, 1.18 via patch | | 43 | etc/ntp.conf 1.16, 1.17, 1.18 via patch |
44 | external/bsd/ntp/dist/ntpd/ntp_request.c patch | | 44 | external/bsd/ntp/dist/ntpd/ntp_request.c patch |
45 | | | 45 | |
46 | Patch from ntp 4.2.7p404 to prevent an amplifier and DoS attack. | | 46 | Patch from ntp 4.2.7p404 to prevent an amplifier and DoS attack. |
47 | Add several "restrict" lines to the default ntp.conf and | | 47 | Add several "restrict" lines to the default ntp.conf and |
48 | improve comments | | 48 | improve comments |
49 | [spz, ticket #1895] | | 49 | [spz, ticket #1895] |
50 | | | 50 | |
51 | distrib/ews4800mips/Makefile 1.3 | | 51 | distrib/ews4800mips/Makefile 1.3 |
52 | | | 52 | |
53 | Add "cdroms" to the SUBDIR list for src/distrib/ews4800mips. | | 53 | Add "cdroms" to the SUBDIR list for src/distrib/ews4800mips. |
54 | Should prevent the iso image from being created in the source tree | | 54 | Should prevent the iso image from being created in the source tree |
55 | [apb, ticket #1894] | | 55 | [apb, ticket #1894] |
56 | | | 56 | |
| | | 57 | xsrc/external/mit/libXfont/dist/src/bitmap/bdfread.c patch |
| | | 58 | xsrc/xfree/xc/lib/font/bitmap/bdfread.c patch |
| | | 59 | |
| | | 60 | Fix CVE-2013-6462: scanf without field width limits can crash |
| | | 61 | with huge input data. |
| | | 62 | [wiz, ticket #1896] |
| | | 63 | |