[Midnightbsd-cvs] src [7623] stable/0.8/UPDATING: document patches
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Tue May 31 18:38:46 EDT 2016
Revision: 7623
http://svnweb.midnightbsd.org/src/?rev=7623
Author: laffer1
Date: 2016-05-31 18:38:46 -0400 (Tue, 31 May 2016)
Log Message:
-----------
document patches
Modified Paths:
--------------
stable/0.8/UPDATING
Modified: stable/0.8/UPDATING
===================================================================
--- stable/0.8/UPDATING 2016-05-31 22:35:12 UTC (rev 7622)
+++ stable/0.8/UPDATING 2016-05-31 22:38:46 UTC (rev 7623)
@@ -1,5 +1,17 @@
Updating Information for MidnightBSD users.
+20160531:
+ Fix four security issues with MidnightBSD.
+
+ The implementation of TIOCGSERIAL ioctl(2) does not clear the output
+ struct before sending to userland in the linux emulation layer.
+
+ The compat 43 stat(2) system call exposes kernel stack to userland.
+
+ libarchive - CVE-2015-2304 and CVE-2013-0211 fix issues with
+ cpio directory traversal and an integer signedness error in the
+ archive write zip data routine.
+
20160519:
Kernel Security updates
More information about the Midnightbsd-cvs
mailing list