Bitrig 1.0 Errata

The following patches are available in the stable/1.0 branch in our git repository.

  • SECURITY FIX July 30, 2015 patch
    It was possible tricking patch(1) into feeding arbitrary commands to ed(1) when interpreting an ed style diff, resulting in the execution of shell commands.
  • SECURITY FIX July 27, 2015 patch
    The patch(1) utility was susceptible to executing arbitrary commands when presented with a specially crafted input file. See CVE-2015-1416.
  • SECURITY FIX March 19, 2015 patch
    Several crashes have been fixed in OpenSSL. See CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288 and CVE-2015-0289.
  • SECURITY FIX March 19, 2015 patch
    More BDF file parsing issues in libXfont.
  • SECURITY FIX March 19, 2015 patch
    Another fix for buffer overflows in malformed fonts.
  • SECURITY FIX March 19, 2015 patch
    Don't permit TLS client connections to be downgraded to weak keys.
  • SECURITY FIX March 19, 2015 patch
    Information leak in the XkbSetGeometry request of X servers.
  • STABILITY FIX March 8, 2015 patch
    amd64: A read(2) on /dev/zero with a size of 2**32 causes a busy loop in mmrw() that freezes the kernel.
  • STABILITY FIX Jan 30, 2015 patch
    Incorrect buffer handling in WAPBL(4) causes buffers to be leaked and can thus lead to out-of-memory conditions.
  • SECURITY FIX Jan 30, 2015 patch
    CVE-2014-6272 - potential heap overflow in libevents buffer/bufferevent APIs '
  • STABILITY FIX Dec 11, 2014 patch
    Calling scanf() with a format string containing a certain combination of %n and %f leads to an incorrect return value.
  • RELIABILITY FIX Dec 5, 2014 patch
    A type signedness mismatch prevents correct error handling.
  • RELIABILITY FIX Dec 5, 2014 patch
    iked: Flaws in certificate handling lead to crashes.
  • SECURITY FIX Dec 3, 2014 patch
    CVE-2014-8602 - unbound(8) can be tricked into following an endless series of delegations.
  • RELIABILITY FIX Dec 3, 2014 patch
    Several issues have been fixed in httpd.
  • RELIABILITY FIX Dec 3, 2014 patch
    A memcpy() with overlapping arguments can lead to crashes with PPPoE.
  • RELIABILITY FIX Dec 3, 2014 patch
    Several bugs in pipex allowed crashes from remote.
  • RELIABILITY FIX Dec 3, 2014 patch
    Calling gethostbyname() with an incorrect hostname could cause a NULL dereference.
  • RELIABILITY FIX Dec 3, 2014 patch
    relayd crashes on HTTP requests w/out version number.
Fork me on GitHub