Move RELENG_0_3 to stable/0.3
tinderbox caught a problem.. another header was missing.
Bump patch level for mport fix. This is not a security update.
MFC: Fix exit status of mport_xsystem so that failed commands are handled properly during install/uninstall
MidnightBSD 0.3-RELEASE-p9 Bind vulnerability related to resource records. See CVE-2012-1667.
MidnightBSD 0.3-RELEASE-p8 Fix a problem with cyrpt's DES implementation when used with non 7-bit ascii passwords.
0.3-RELEASE-p7 add SGC and BUF_MEM_grow_clean(3) bug fixes.
0.3-RELEASE-p6 OpenSSL failes to clear the bytes used as block cipher padding in SSL 3.0 records when operating as a client or a server that accept SSL 3.0 handshakes. As a result, in each record, up to 15 bytes of uninitialized memory may be sent, encrypted, to the SSL peer. This could include sensitive contents of previously freed memory. [CVE-2011-4576] OpenSSL support for handshake restarts for server gated cryptograpy (SGC) can be used in a denial-of-service attack. [CVE-2011-4619] If an application uses OpenSSL's certificate policy checking when verifying X509 certificates, by enabling the X509_V_FLAG_POLICY_CHECK flag, a policy check failure can lead to a double-free. [CVE-2011-4109] A weakness in the OpenSSL PKCS #7 code can be exploited using Bleichenbacher's attack on PKCS #1 v1.5 RSA padding also known as the million message attack (MMA). [CVE-2012-0884] The asn1_d2i_read_bio() function, used by the d2i_*_bio and d2i_*_fp functions, in OpenSSL contains multiple integer errors that can cause memory corruption when parsing encoded ASN.1 data. This error can occur on systems that parse untrusted ASN.1 data, such as X.509 certificates or RSA public keys. [CVE-2012-2110]
Missed this during the security updates.
0.3-release-p5
telnetd: fix a root exploit from a fixed buffer that was not checked
pam: don't allow escape from policy path. Exploitable in KDE, etc.
fix pam security issue with ssh module.
fix security issue with chroot and ftpd
Fix a problem with unix socket handling caused by the recent patch to unix socket path handling. This allows network apps to work under the linuxolator again.
Fix path validation with unix domain sockets.
0.3-RELEASE-p3. Fix a security hole in compress and gzip
MidnightBSD has it's own pool now. Let's not be dicks.
Fix a critical security hole in BIND 9.6.x with caching resolvers. Attackers can crash BIND. CVE-2011-1910 MidnightBSD 0.3-RELEASE-p2
While I'm at it, fix this. It was documented in the release notes, but it might as well be correct when someone does a source update using RELENG_0_3
bump to p1 for sqlite minor issue.
The version number reported in the .pc file for pkg-config is incorrect. This doesn't appear to affect any mports at this time, but it's not a good idea to falsly advertise in case there are version specific bugs. this doesn't affect current as it's got a newer version of sqlite3.
Add xfce4 to the packages on the cdroms and make sure a few things are on disc 1. while we're at it, add pidgin as it's rather useful on desktops.
add apache src dist and remove compat which isn't valid
Use the apache directory instead of compat. Compat items are in cddl and apache contains mdnsrepsonder.
Disable the firewall and install xorg for all three cases. While the user may have installed xorg from the installation media, some users did not during 0.2. Let's be sure x is there. I'd like to setup .xinitrc files for each user (or modify the global xinitrc file) but that seems like something the installer should handle directly in the future during user creation. Just document it needs to be done for now.
update for 0.3
0.3-RELEASE
0.3-RELEASE changes.
since wine isn't working at the moment remove from package split
Modify some of the packages included with the pkg split.
Make some changes to firstboot in hopes of simplifying installation of several graphical environments.
Document recent changes
tag
Bump midnightbsd version. We've made a number of changes lately and it will help us identify release version
Set pkg_add to use 0.3-release folder on ftp server
Remove perl files that we've added back since the perl import.
libperl.so is not old.
Don't print out an error message when netwait script is disabled.
Fix a typo. This was already corrected on current.
get rid of extra /
I suspect this won't work with destdir properly yet, but it does create a symlink for libperl.so so that applications can find it. A better solution should be devised.
Happy new year.
Update root server list.
add working directory for bind 9
Add documentation for mports bsd.mport.mk
Give a more specific error message depending on status of no target
MFC: When reopening a stream backed by an open file descriptor, do not close the existing file descriptor. Instead, let dup2() atomically close the old file descriptor when assigning the newly opened file to the same descriptor. This closes a race in a multithreaded application where a concurrent open() could allocate the existing file descriptor in between the calls to close() and dup2().
fix some issues with cross builds... obviously perl will still be borked.
A double free exists in the SSL client ECDH handling code, when processing specially crafted public keys with invalid prime numbers. [CVE-2010-2939]
Fix expand_number and flopen on 0.3 branch as well.
Drat pseudofs.
don't try to unlock a mutex that wasn't locked. FreeBSD SA 10:09
MFC: Deal with crazy plists that define @mode or @group without arguments. Just ignore the line.
A problem was found with the cvstrac port related to the pkgconfig file for sqlite3. A library that does not exist was included.
Fix a warning about strlen
Security update for globbing issue affecting ftp and sftp
MFC: netwait script.
Security update for bzip2 integer overflow
remove isdnd script
Remove isdn startup.. we killed that a few months ago.
fix a file desc leak
Cleanup networks to align with today's reality. Add mentions of networks(5) and hostname(7).
0.3-PRERELEASE
Remove xz for now
Remove xz on 0.3 as we're not ready on the prime time.
This commit was manufactured by cvs2svn to create branch 'RELENG_0_3'.
Import of gdb
Import of binutils
Import of libf2c
Import of gdb
Import of binutils
Import of gcc 4.2.0 objective c
Import of gcc 4.2.0 misc suport libraries
Import of gcc 4.2.0 libstdc++
Imported from FreeBSD 7.0 sources
Virgin import of GNU Readline 5.2 p13 (trimmed)
Virgin import of GNU Readline 5.2 (trimmed)
Imported from FreeBSD 7.0
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
This commit was manufactured by cvs2svn to create branch 'FreeBSD'.
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Vendor import of OPENSSL 0.9.8e
Imported FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
Imported from FreeBSD 7.0 sources
This commit was manufactured by cvs2svn to create branch 'FreeBSD'.
Import ncurses 5.6 (trimmed)
Import OpenBSM
libarchive 1.3.1
Zlib 1.2.3
fix lost file from server crash
fix groff
Imported from FreeBSD 6.1 beta sources
Imported from FreeBSD 6.0 sources