gperf 3.0.3
add mandoc and remove groff
document zlib and llvm updates
document binutils & mport change
wpa_supplicant 2 and krack patch.
sqlite update
Updated subversion
document perl bump
document version number change/reason
document nvme add
Ryzen workaround #1
mention heimdal patch
sudo removed from base. Use doas(1) or install sudo from mports
bump version to 0.10
document hast module
Some style fixes
document ada change
document updates to apr/apr-util
update svn to 1.8.10
updated serf
start removing lindev
add /dev/full device.
add doas utility
OpenSSH 7.3p1
add bind import
document patch
update xz to 5.2.2
document recent zfs and libarchive updates
update new feature list for today
document new netbsd code
update patchset
document file system recompile
document need for mergemaster -p
import a new version of zfs from opensolaris & freebsd
note via change
document samsung 840 pro fix
document some changes
netcat from OpenBSD 5.2
briefly mention new sysctl net.inet.tcp.experimental.initcwnd10
Add a resource limit for the total number of kqueues available to the user. Kqueue now saves the ucred of the allocating thread, to correctly decrement the counter on close. Based on FreeBSD SVN 256849
we went back to 2016a for now until we update the tzcode
merge tzdata 2016f
document desktop port change
document some of the changes we have made
document libmport fixes
document recent changes
document security patches
document mined and msearch changes
document hwpmc changes
document fixes
add entry for openssl patch
mention wait6 and libmport changes
Incorrect argument validation in sysarch(2) A special combination of sysarch(2) arguments, specify a request to uninstall a set of descriptors from the LDT. The start descriptor is cleared and the number of descriptors are provided. Due to invalid use of a signed intermediate value in the bounds checking during argument validity verification, unbound zero'ing of the process LDT and adjacent memory can be initiated from usermode. Obtained from: FreeBSD.
OpenSSH doesn't have the luck of the Irish. Fix a security issue with OpenSSH X11 forwarding that can allow an attacker run shell commands on the call to xauth.
mention top and compiler change
document linux emulation pipe2
fix 3 security issues with OpenSSL
document SCTP fix
TCP MD5 signature denial of service A programming error in processing a TCP connection with both TCP_MD5SIG and TCP_NOOPT socket options may lead to kernel crash.
document bsnmp config change
Happy New Year.
document default change
document mport statistics
revise rpcbind patch
security
document libmport changes
mention kqueue fix
fix dates
Fix a security vulnerability with expat.
libc now builds with clang
document GNU coreutils compatibily for date
add the kernel piece of wait6 system call
document yesterday
xz 5.0.8
document syslog in libmport
document routed and bsd patch fixes
Document libjansson
document patch change
mention security patches
tcp resassembly bug
mention openssl, heimdal and cpucontrol updates.
sqlite 3.8.10.2 imported
document sort update
document reallocarray in libc
Fix a bug where TCP connections transitioning to LAST_ACK state can get stuck. This can result in a denial of service.
document libmport changes on @sample and @shell
update flex mention
introduce lz4 compression into our ZFS implementation.
document the new service stop feature in mport packages
Introduce trim support for ZFS
increase the default DH parameters for client conections to 1024 to match server and work with modern openssl
mention tzdata and openssl 0.9.8zg
bump version to 0.7 on current.
update sqlite to 3.8.9 to fix several security issues
document new security issues that we fixed based on FreeBSD patches for the same issues.
updated mDNSResponder
updated mksh
openssl 0.9.8zf
Upgrade to openssl 0.9.8ze
document security patches for bind and igmp
Revert revisions 6952-6954, aka udp lite support. This is not ready for primetime yet.
Fix a DOS attack on libmagic
UDP Lite aka RFC 3828 support.
fix building perl during buildworld when the GDBM port is installed.
timezone data updated
serf 1.3.8
tftp with ssl
OpenSSL 0.9.8zc
Mention security patches. Note this list is not the same as 0.5 because of the different OpenSSL version in progress.
Upgrade to OpenSSH 6.6p1 in 0.6-CURRENT
update xz
update mksh to R50d
mksh
sqlite 3.8.6
sudo 1.7.6p2
mksh/libmport updates
20140916: Fix a security issue with TCP SYN. When a segment with the SYN flag for an already existing connection arrives, the TCP stack tears down the connection, bypassing a check that the sequence number in the segment is in the expected window. Obtained from: FreeBSD
Security update for openssl. The receipt of a specifically crafted DTLS handshake message may cause OpenSSL to consume large amounts of memory. [CVE-2014-3506] The receipt of a specifically crafted DTLS packet could cause OpenSSL to leak memory. [CVE-2014-3507] A flaw in OBJ_obj2txt may cause pretty printing functions such as X509_name_oneline, X509_name_print_ex et al. to leak some information from the stack. [CVE-2014-3508] OpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject to a denial of service attack. [CVE-2014-3510]
clearenv(3) was borked MFC after: 1 week
document 0.6
Perl 5.18.2 MidnightBSD version 5007
note the jail behavior change.
Fix a security vulnerability in the control message API. Buffer is not properly cleared before sharing with userland.
mksh R50
update file to 5.19
openssl
mention sendmail and ktrace
TCP reassembly
update zlib to 1.2.7
username bump
mention security updates
Document recent changes to USB, em(4), igb(4) and ixgbe(4)
turn on svn keywords
Drop sparc64 arch
OpenSSH 6.4p1
Document less & perl updates
remove named from base
rarpd updated.
fib gets bigger.
Security updates in nullfs and ifioctl
svnlite is now in base.
Fixed sendmail bug.
BIND 9.8.5-P2 was imported
3.7.17
xz 5.0.4
Forgot to document sendmail update
Security vulnerabilities patched.
mksh R48 imported.
mention virtio(4) and mport patch
RELENG_0_4 branch created.
BIND & OpenSSL security updates.
mksh update to r44
lots of mksh activity
mksh bump
mksh update
OpenSSH updated
sqlite 3 updated.
gnusort -> bsdsort
document recent imports
BIND / cve-2012-1667
mksh R40f
Perl 5.14.2
mksh update
document cpucontrol(8)
Update Apple's mDNSResponder to 333.10
document new graid5(8)
telnetd: fix a root exploit from a fixed buffer that was not checked
pam: don't allow escape from policy path. Exploitable in KDE, etc.
fix pam_ssh security issue
fix security hole in ftpd/libc/
document libdialog change
mksh r40d
lots going on
Introduce BSD licensed version of grep. MK_BSD_GREP = yes turns it on as grep, otherwise gnu grep is installed as grep and bsdgrep is bsd licensed grep. In the inverse, gnu grep becomes gnugrep. For "compatibility", bsdgrep can use the gnu regex library which is also faster, but then it's not purely bsd.
mksh R40c
Update bind for ANOTHER security hole.
time zone data 2011n
Document mDNSResponder and BIND upgrades
introduce cflow
Document less v436, intr_bind, awk update, ...
awk 20110810
timezone++
Introduce CPU Affinity in MidnightBSD. The ULE scheduler is now default on i386 and amd64 architectures. cpuset(1) allows the user to limit a process to a group of CPU cores to run on using new system calls. 32bit versions of the system calls were also added to support 32bit binaries running on amd64 boxes. libc's symbol map was modified to include the cpuset* system calls to expose them to userland. This is based on work by Jeff Roberson from FreeBSD 7.1.
Fix linuxolator unix socket handling after recent security patch.
fetch(1) update
Document alc(4)work, usb umass/usbdevs
Document changes to ath(4) and alc(4).
document security updates
perl port required for release bye bye
xz 5.0.3
document sparc64 GENERIC changes
Document new msearch(1) utility.
Ack!
add cpufreq(1)
mksh updated
Document and bump midnightbsd version for bind 9 fix
Document newfs change.
mention perl and mport changes.
Perl & sendmail have been updated.
Document recent changes.
update time zones
document nss_mdns addition
Patch for CVE-2011-0014
xz/lzma
cam(4)
Document perl update.
Document intel driver update for NICs
age(4)
Bind 9.6.3
eeemon(4) mention
Document GNU sort, openssh updates.
Document openssl update.
sqlite 3.7.5 imported.
document awk upgrade
didn't know what year it was earlier. yes i updated file too
tcsh 6.17
Import it(4) and lm(4) for common Super I/O hardware sensors. This is based on the 2007 Google Summer of Code project by Constantine A. Murenin and code from OpenBSD.
update sudo while we're at it.
bind ++
add jme(4) for JMicron ethernet devices. This is experimental and any bugs should be reported.
A double free exists in the SSL client ECDH handling code, when processing specially crafted public keys with invalid prime numbers. [CVE-2010-2939]
Several portions of the kernel and userland code related to UFS file systems (and UFS2) cannot properly handle inode counts above 2^31 due to use of int types. Based on a patch from FreeBSD, I've modified our UFS2 implementation to handle unsigned values for inode counts which should allow for file systems greater than 16TB. newfs and growfs was also modified.
I'm having a great time with pseudofs!
Document new sysrc utility.
Security update for integer overflow in bzip2
Move things along.. current is now 0.4-CURRENT. Change the man pages, osreldate and other tunables in the system accordingly. While we're here, update other bsd systems in our mdoc.local.
Document security update.
Document mdnsd
libdispatch
Denote mbuf fix
brainfuck(1)
zlib++
Sudo was updated
Document zlib 1.2.4 update
Document this mornings change.
timezones and ati updates
Document recent changes.
MKSH R39c.. missed it by a few hours.
Haven't we been busy.
Update system sudo
document re(4) and rl(4) updates. document gcc fix on amd64.
fix sftp on amd64.
BIND 9.6.1-P2, FreeBSD version of ash import
Sendmail 8.14.4
Document kqueue and posix_spawn additions.
zfs and bind security updates
Mention amdtemp(4)
Mention OpenSSL change.
Import OpenBSD's sysctl sensors framework. This is based on work by Constantine A. Murenin for the 2007 Google summer of code for FreeBSD. Includes: sample config file for sensord rc scripts documentation fixes and updates sys/kern/kern_sensors.c sys/sensors.h This is compatible with OpenBSD 4.1 and 4.2 in terms of the userland bits.
OpenNTPD 4.4
mksh and openssh updates
Mention recent updates.
Tell amd64 users how to get a working system for now.
document timezone update yesterday and some other things we've been up to
tzupdate
mention the bind issue in updating
mention usb changes and removal of pcc with a brief explanation.
Mention the new installer option and change for powerd to be disabled by default.
OpenSSH 5.2
makefs++
OpenSSL security update
document some of the adventures i've had in the last two days.
fix comment.
add a comment about Xorg sucking with hald and mouse/kbd problems.
mention what we did to mksh
remove comment about UPDATING in mports since we dont' have one right now.
mksh update, new /bin/sh, fortune and ahd
Mention libarchive update and ctriv's perl work.
Update updating, bind, mksh, tcpdump
DNSSEC bind update.
lukemftpd security fix
OpenSSL security patch
Import gnu readline
timezones are fun
Update copyrights for 2009.
Explain the status of batt(1), and ongoing work.
Explain the progress we've made in the last few months. Still more to do.
Update nve(4) to support newer hardware.
sysinstall, firstboot, openbsm import, src/release 3 isos
Mention pcc fix.
Add atheros wireless NICs to GENERIC
Document recent changes
sendmail 8.14.3
Explain the pcc, elf, ssh-vulnkey + blacklists changes.
Add pre-processor msg
Boy we did a lot this month.
Sync updating.
Import OpenSSH 4.9p1
document changes.
We haven't been maintaining UPDATING since Jan 1. Catch it up with changes since then that are relevant.
Happy New Year
Update sendmail to 8.14.2 Add comment about the older mksh update.
Update to gcc 3.4.6.
Document mksh update and the changes to libpthread.
Document the addition of the dot.mkshrc file in skel and ipfw desktop feature.
GNU tar be gone
Explain some of our recent changes.
Mention cpdup import
Forgot to log cpio upgrade.
Explain that we branched and begin doing real work with src again. cvs was updated to 1.12.13.
Add further directions to the propolice removal bit.
Back out propolice. More information in UPDATING. In short, propolice broke libpthread and libthr.
fix paths
Small correction to install directions for proplice. Added requirement to build libpthread and libthr first.
Importing propolice into MidnightBSD. Propolice is going to provide us with much greater security and stability in the long run. If upgrading from a pre-propolice system, please follow the these instructions: cd /usr/src/lib/libc && make obj && make && make install cd /usr/src/gnu/usr.bin/cc && make obj && make && make install buildworld and kernel It is adviced that any mports which were installed and/or built prior to the propolice update also be updated. If any errors or issue are encounted, please contact security@midnightbsd.org and we will be sure to investigate and come up with an expeditious fix.
Document today's changes.. gzip, removal of send-pr, etc.
We got a few things out of the way today.
A summary of some of today's changes.
add mfi
Updated to include instructions for installing sudo.
Explain recent changes in MidnightBSD.
We've been busy today.
Documented changes to bsnmpd, geom, etc.
Catch this up a bit with recent changes.
List recent changes and removals.
Described various src/sys/dev updates, lukemftpd and other exiting things.
Try to catch up recent commits.
*** empty log message ***
ksh was added to the base system.
This commit was generated by cvs2svn to compensate for changes in r5, which included commits to RCS files with non-trunk default branches.
Imported from FreeBSD 6.1 beta sources
Imported from FreeBSD 6.0 sources
This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.