From noreply at github.com Thu Aug 8 18:12:48 2024
From: noreply at github.com (Lucas Holt)
Date: Thu, 08 Aug 2024 15:12:48 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] fff0af: A signal handler in
sshd(8) may call a logging fun...
Message-ID: <MidnightBSD/src/push/refs/heads/master/9e39fe-fff0af@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: fff0afc51b9137c07eb2ca4524e005bdb7f16746
https://github.com/MidnightBSD/src/commit/fff0afc51b9137c07eb2ca4524e005bdb7f16746
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-08 (Thu, 08 Aug 2024)
Changed paths:
M crypto/openssh/sshd.c
Log Message:
-----------
A signal handler in sshd(8) may call a logging function that is not async-
signal-safe. The signal handler is invoked when a client does not
authenticate within the LoginGraceTime seconds (120 by default). This signal
handler executes in the context of the sshd(8)'s privileged code, which is
not sandboxed and runs with full root privileges.
This issue is another instance of the problem in CVE-2024-6387 addressed by
FreeBSD-SA-24:04.openssh. The faulty code in this case is from the
integration of blacklistd in OpenSSH
Obtained from: FreeBSD
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Thu Aug 8 18:13:10 2024
From: noreply at github.com (Lucas Holt)
Date: Thu, 08 Aug 2024 15:13:10 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 9fe163: A signal handler in
sshd(8) may call a logging fun...
Message-ID: <MidnightBSD/src/push/refs/heads/stable/3.2/5e3769-9fe163@github.com>
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: 9fe163cafc150dd86db03429d951bb4f53a20a50
https://github.com/MidnightBSD/src/commit/9fe163cafc150dd86db03429d951bb4f53a20a50
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-08 (Thu, 08 Aug 2024)
Changed paths:
M crypto/openssh/sshd.c
Log Message:
-----------
A signal handler in sshd(8) may call a logging function that is not async-
signal-safe. The signal handler is invoked when a client does not
authenticate within the LoginGraceTime seconds (120 by default). This signal
handler executes in the context of the sshd(8)'s privileged code, which is
not sandboxed and runs with full root privileges.
This issue is another instance of the problem in CVE-2024-6387 addressed by
FreeBSD-SA-24:04.openssh. The faulty code in this case is from the
integration of blacklistd in OpenSSH
Obtained from: FreeBSD
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 05:28:38 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 02:28:38 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] fdadd9: Implment a slightly
modified patch from Mark Johns...
Message-ID: <MidnightBSD/src/push/refs/heads/master/fff0af-fdadd9@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: fdadd9ee2f08a9408fcebd2bf0a48dc733736a12
https://github.com/MidnightBSD/src/commit/fdadd9ee2f08a9408fcebd2bf0a48dc733736a12
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M sys/netinet/in_pcb.c
M sys/netinet6/in6_pcb.c
Log Message:
-----------
Implment a slightly modified patch from Mark Johnston @ FreeBSD to limit connections
with a sysctl that allow 0.0.0.0/32 to be equivalent to 127.0.0.1/32.
This "feature" of the BSD network stack was a recent security advisory for several
web browsers on *NIX systems.
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 05:29:04 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 02:29:04 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 127d43: Implment a slightly
modified patch from Mark Johns...
Message-ID: <MidnightBSD/src/push/refs/heads/stable/3.2/9fe163-127d43@github.com>
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: 127d43ee1a187bf77257a25750c926f03111246a
https://github.com/MidnightBSD/src/commit/127d43ee1a187bf77257a25750c926f03111246a
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M sys/netinet/in_pcb.c
M sys/netinet6/in6_pcb.c
Log Message:
-----------
Implment a slightly modified patch from Mark Johnston @ FreeBSD to limit connections
with a sysctl that allow 0.0.0.0/32 to be equivalent to 127.0.0.1/32.
This "feature" of the BSD network stack was a recent security advisory for several
web browsers on *NIX systems.
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 12:59:58 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 09:59:58 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 0f22a5: RFC 4941bis suggests
lowering the time for IPv6 te...
Message-ID: <MidnightBSD/src/push/refs/heads/master/fdadd9-0f22a5@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 0f22a5a3dfe434822cbed878a65fbd08ceb1a48e
https://github.com/MidnightBSD/src/commit/0f22a5a3dfe434822cbed878a65fbd08ceb1a48e
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M sys/netinet6/in6_ifattach.c
M sys/netinet6/in6_ifattach.h
M sys/netinet6/nd6.h
M sys/netinet6/nd6_rtr.c
Log Message:
-----------
RFC 4941bis suggests lowering the time for IPv6 temporary addresses.
This is an implmentation based on patches contributed from
Fernando Gont, Loganden Velvindron and Marek Zarychta for FreeBSD.
(FreeBSD bug 245103)
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 13:00:17 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 10:00:17 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] d28221: RFC 4941bis suggests
lowering the time for IPv6 te...
Message-ID: <MidnightBSD/src/push/refs/heads/stable/3.2/127d43-d28221@github.com>
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: d28221522d281da61749929dffefd2c548de2b08
https://github.com/MidnightBSD/src/commit/d28221522d281da61749929dffefd2c548de2b08
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M sys/netinet6/in6_ifattach.c
M sys/netinet6/in6_ifattach.h
M sys/netinet6/nd6.h
M sys/netinet6/nd6_rtr.c
Log Message:
-----------
RFC 4941bis suggests lowering the time for IPv6 temporary addresses.
This is an implmentation based on patches contributed from
Fernando Gont, Loganden Velvindron and Marek Zarychta for FreeBSD.
(FreeBSD bug 245103)
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 13:02:31 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 10:02:31 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 892c6a: document recent changes.
Message-ID: <MidnightBSD/src/push/refs/heads/master/0f22a5-892c6a@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 892c6a1e5854fad71bae619d6d92e9a80655a658
https://github.com/MidnightBSD/src/commit/892c6a1e5854fad71bae619d6d92e9a80655a658
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M UPDATING
Log Message:
-----------
document recent changes.
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 13:04:29 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 10:04:29 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 8addc7: A signal handler in
sshd(8) may call a log...
Message-ID: <MidnightBSD/src/push/refs/heads/stable/3.2/d28221-8addc7@github.com>
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: 8addc7c2edb8ac3fbb80920920967e5d91c9abf6
https://github.com/MidnightBSD/src/commit/8addc7c2edb8ac3fbb80920920967e5d91c9abf6
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M UPDATING
Log Message:
-----------
A signal handler in sshd(8) may call a logging function that is not sync-signal-safe.
(another CVE-2024-6387 related bug with blacklistd support)
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 13:04:49 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 10:04:49 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 0d3b34: document ssh issue
Message-ID: <MidnightBSD/src/push/refs/heads/master/892c6a-0d3b34@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 0d3b349d400f30d3ffdd288de48e1d6965bede9f
https://github.com/MidnightBSD/src/commit/0d3b349d400f30d3ffdd288de48e1d6965bede9f
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M UPDATING
Log Message:
-----------
document ssh issue
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 14:51:02 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 11:51:02 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 5812d7: fix a few issues with
pkg-stage to work with mport
Message-ID: <MidnightBSD/src/push/refs/heads/master/0d3b34-5812d7@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 5812d75fd95b9f3463777736f0410fae074b6095
https://github.com/MidnightBSD/src/commit/5812d75fd95b9f3463777736f0410fae074b6095
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M release/scripts/pkg-stage.sh
Log Message:
-----------
fix a few issues with pkg-stage to work with mport
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 14:51:24 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 11:51:24 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] 446703: fix a few issues with
pkg-stage to work with mport
Message-ID: <MidnightBSD/src/push/refs/heads/stable/3.2/8addc7-446703@github.com>
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: 44670316127595a9f6f6397abea4cfb77cd45f91
https://github.com/MidnightBSD/src/commit/44670316127595a9f6f6397abea4cfb77cd45f91
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M release/scripts/pkg-stage.sh
Log Message:
-----------
fix a few issues with pkg-stage to work with mport
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
From noreply at github.com Sun Aug 11 20:04:20 2024
From: noreply at github.com (Lucas Holt)
Date: Sun, 11 Aug 2024 17:04:20 -0700
Subject: [Midnightbsd-cvs] [MidnightBSD/src] fb7bd4: change the order.
Message-ID: <MidnightBSD/src/push/refs/heads/master/5812d7-fb7bd4@github.com>
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: fb7bd446ba2638e6d7c4ccf343111b2c06dde668
https://github.com/MidnightBSD/src/commit/fb7bd446ba2638e6d7c4ccf343111b2c06dde668
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-08-11 (Sun, 11 Aug 2024)
Changed paths:
M release/scripts/pkg-stage.sh
Log Message:
-----------
change the order.
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications