https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
Jochen Neumeister changed:
What|Removed |Added
Status|In Progress |Closed
Resolution|---
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
--- Comment #3 from commit-h...@freebsd.org ---
A commit references this bug:
Author: bdrewery
Date: Wed Jan 31 23:44:18 UTC 2018
New revision: 460548
URL: https://svnweb.freebsd.org/changeset/ports/460548
Log:
MFH: r459752
Update to
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
--- Comment #2 from commit-h...@freebsd.org ---
A commit references this bug:
Author: ale
Date: Tue Jan 23 14:08:45 UTC 2018
New revision: 459752
URL: https://svnweb.freebsd.org/changeset/ports/459752
Log:
Update to 5.5.59 release.
PR
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
Alex Dupre changed:
What|Removed |Added
Resolution|--- |FIXED
Status|New
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
Dani changed:
What|Removed |Added
Flags||merge-quarterly?
--
You are receiving this
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
Dani changed:
What|Removed |Added
CC||a...@freebsd.org,
|
Dani has asked freebsd-security@FreeBSD.org for
maintainer-approval:
Bug 225241: databases/mysql55-server: Update to 5.5.59 fixes multiple CVE
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225241
Attachment 189991: Update to MySQL 5.5.59 - fixes multiple CVE's
https://bugs.freebsd.org/bugzill
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=223732
Remko Lodder changed:
What|Removed |Added
Assignee|freebsd-secur...@freebsd.or |k...@freebsd.org
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=223732
--- Comment #2 from o...@hardenedbsd.org ---
op@opn op# procstat -kk 83681
PIDTID COMMTDNAME KSTACK
83681 100141 dos - vm_map_findspace+0x5f
vm_map_fin
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=223732
Conrad Meyer changed:
What|Removed |Added
Assignee|freebsd-b...@freebsd.org|freebsd-secur...@freebsd.or
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
--- Comment #12 from Benjamin Kaduk ---
(In reply to Bernard Spil from comment #11)
> Tested against an OpenSSL 2.4.29 using SNI I get the correct cert response.
Surely this is an Apache 2.4.29, not OpenSSL.
--
You are receiving this ma
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
Bernard Spil changed:
What|Removed |Added
CC||br...@freebsd.org
Statu
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
Mark Linimon changed:
What|Removed |Added
Resolution|--- |FIXED
Status|In Progres
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #14 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Thu Jun 1 13:22:05 UTC 2017
New revision: 319419
URL: https://svnweb.freebsd.org/changeset/base/319419
Log:
MFC r318450:
Add tests for so
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #13 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Thu Jun 1 13:20:47 UTC 2017
New revision: 319418
URL: https://svnweb.freebsd.org/changeset/base/319418
Log:
MFC r318450:
Add tests for so
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Kubilay Kocak changed:
What|Removed |Added
URL||https://lists.freebsd.org/p
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Xin LI changed:
What|Removed |Added
Flags|mfc-stable10+ |mfc-stable10-
--
You are receiving this
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
--- Comment #6 from commit-h...@freebsd.org ---
A commit references this bug:
Author: delphij
Date: Wed May 31 05:00:02 UTC 2017
New revision: 319275
URL: https://svnweb.freebsd.org/changeset/base/319275
Log:
MFC r318975:
Tighten /ent
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Xin LI changed:
What|Removed |Added
Flags|mfc-stable10?, |mfc-stable10+,
|mfc-sta
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
Kubilay Kocak changed:
What|Removed |Added
CC||freebsd-secur...@freebsd.or
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #12 from Kubilay Kocak ---
Track branches MFC'd to
--
You are receiving this mail because:
You are on the CC list for the bug.
___
freebsd-security@freebsd.org mailing list
https://l
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #10 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon May 29 12:58:31 UTC 2017
New revision: 319129
URL: https://svnweb.freebsd.org/changeset/base/319129
Log:
MFC r318298:
Fix several buff
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #9 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon May 29 12:52:13 UTC 2017
New revision: 319126
URL: https://svnweb.freebsd.org/changeset/base/319126
Log:
MFC r318298:
Fix several buffe
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Kubilay Kocak changed:
What|Removed |Added
Flags||mfc-stable10?,
|
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Xin LI changed:
What|Removed |Added
Assignee|d...@freebsd.org |delp...@freebsd.org
--
You are receivin
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Xin LI changed:
What|Removed |Added
Status|New |In Progress
--- Comment #4 from Xin LI -
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
--- Comment #5 from commit-h...@freebsd.org ---
A commit references this bug:
Author: delphij
Date: Sat May 27 06:24:06 UTC 2017
New revision: 318975
URL: https://svnweb.freebsd.org/changeset/base/318975
Log:
Tighten /entropy permissions
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Ed Maste changed:
What|Removed |Added
CC||ema...@freebsd.org
--- Comment #3 from
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
--- Comment #2 from Mark Murray ---
Agreed. The proposed change looks good. I say get it out there ASAP.
--
You are receiving this mail because:
You are on the CC list for the bug.
___
freebsd-s
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Xin LI changed:
What|Removed |Added
CC||delp...@freebsd.org,
|
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219527
Bug ID: 219527
Summary: Flawed umask handling in /etc/rc.d/random
Product: Base System
Version: 11.0-STABLE
Hardware: Any
OS: Any
Status: New
Keywor
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #8 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Thu May 18 13:49:53 UTC 2017
New revision: 318450
URL: https://svnweb.freebsd.org/changeset/base/318450
Log:
Add tests for some cases in r318
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #7 from Jan Kokemüller ---
Created attachment 182684
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=182684&action=edit
More tests for realpath(3)
Here is a patch that adds 'lib/libc/tests/gen/realpath2_test.c'.
The
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #6 from Konstantin Belousov ---
(In reply to commit-hook from comment #5)
I committed the patch almost as is, the bits I omitted are asserts. Generally,
library must not kill the application. If you consider it is more appropr
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #5 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon May 15 17:14:53 UTC 2017
New revision: 318298
URL: https://svnweb.freebsd.org/changeset/base/318298
Log:
Fix several buffer overflows in
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #4 from Konstantin Belousov ---
(In reply to Jan Kokemüller from comment #3)
Yes, the new test file is better, we prefer to not modify third-party code to
ease future imports.
--
You are receiving this mail because:
You are th
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #3 from Jan Kokemüller ---
I've added some tests to a local copy of
'contrib/netbsd-tests/lib/libc/gen/t_realpath.c' [1].
Would a new file in 'lib/libc/tests/gen' be a better place?
realpath_buffer_overflow:
This tests for the
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #2 from Konstantin Belousov ---
Overall this looks fine.
Could you add the tests to our test suite for (most of all) situations you
found ?
--
You are receiving this mail because:
You are the assignee for the bug.
___
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
--- Comment #1 from Jan Kokemüller ---
I found those bugs with LLVM libFuzzer [1]. The fuzz target here [2] should
generate some interesting inputs fairly quickly (when using on the unpatched
realpath(3)). This fuzzer results in 100% code c
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154
Conrad Meyer changed:
What|Removed |Added
CC||c...@freebsd.org,
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
Konstantin Belousov changed:
What|Removed |Added
Status|In Progress |Closed
Resolution|--
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
--- Comment #6 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon Nov 21 10:49:37 UTC 2016
New revision: 308920
URL: https://svnweb.freebsd.org/changeset/base/308920
Log:
MFC r308642:
Initialize reserv
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
--- Comment #5 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon Nov 21 10:47:38 UTC 2016
New revision: 308919
URL: https://svnweb.freebsd.org/changeset/base/308919
Log:
MFC r308642:
Initialize reserv
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
--- Comment #4 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon Nov 21 10:44:40 UTC 2016
New revision: 308918
URL: https://svnweb.freebsd.org/changeset/base/308918
Log:
MFC r308642:
Initialize reserv
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
Kubilay Kocak changed:
What|Removed |Added
Assignee|sect...@freebsd.org |k...@freebsd.org
Keyword
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
--- Comment #3 from Kubilay Kocak ---
@Konstantin If this needs an SA or other post-commit actions, please re-assign
as necessary.
--
You are receiving this mail because:
You are on the CC list for the bug.
___
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
--- Comment #1 from commit-h...@freebsd.org ---
A commit references this bug:
Author: kib
Date: Mon Nov 14 13:20:10 UTC 2016
New revision: 308642
URL: https://svnweb.freebsd.org/changeset/base/308642
Log:
Initialize reserved bytes in str
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
Kubilay Kocak changed:
What|Removed |Added
Keywords||needs-qa, security
Fl
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214488
Bug ID: 214488
Summary: mqueuefs mq_setattr() leaks stack memory
Product: Base System
Version: CURRENT
Hardware: Any
OS: Any
Status: New
Severity: A
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #17 from commit-h...@freebsd.org ---
A commit references this bug:
Author: sbruno
Date: Tue Apr 5 18:27:47 UTC 2016
New revision: 297588
URL: https://svnweb.freebsd.org/changeset/base/297588
Log:
MFC r297488
Repair an ove
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
Sean Bruno changed:
What|Removed |Added
Status|In Progress |Closed
Flags|mfc-stable1
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
Ed Maste changed:
What|Removed |Added
Flags||mfc-stable10?
--
You are receiving thi
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #16 from commit-h...@freebsd.org ---
A commit references this bug:
Author: sbruno
Date: Fri Apr 1 16:16:26 UTC 2016
New revision: 297488
URL: https://svnweb.freebsd.org/changeset/base/297488
Log:
Repair a overflow condition
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #15 from CTurt ---
(In reply to CTurt from comment #14)
Don't worry about this actually, the `break` exits the `switch`, and the loop
will continue, checking all '#' characters, no need for change here.
--
You are receiving th
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #14 from CTurt ---
I've taken another look at the code and found another potential bug. I'm not
certain if this is a bug yet, but I'd also like to bring the following code
from `imgact_binmisc_add_entry` to attention:
/
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #13 from CTurt ---
(In reply to Stacey Son from comment #9)
This patch looks good to me; correctly checks the size of the `xbe_name` and
`xbe_interpreter` strings early on, before any out of bounds reads or writes
could be perfo
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #12 from o...@hardenedbsd.org ---
@CTurt, could you please very / review the patch?
--
You are receiving this mail because:
You are on the CC list for the bug.
___
freebsd-security@fr
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
Stacey Son changed:
What|Removed |Added
CC||s...@freebsd.org
--- Comment #9 from
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #11 from Sean Bruno ---
Without this patch from sson, machine panics as described:
panic: stack overflow detected; backtrace may be corrupted
cpuid = 3
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #10 from Sean Bruno ---
With the patch, the propsed test code does not crash the machine and returns:
r...@tasty.ysv:/var/tmp # ./bad_test
result -1
errno 22
--
You are receiving this mail because:
You are on the CC list for
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
Sean Bruno changed:
What|Removed |Added
Status|New |In Progress
CC|
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #7 from Shawn Webb ---
Any movement on this?
--
You are receiving this mail because:
You are on the CC list for the bug.
___
freebsd-security@freebsd.org mailing list
https://lists.f
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Dag-Erling Smørgrav changed:
What|Removed |Added
Status|In Progress |Closed
Flags|m
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #10 from commit-h...@freebsd.org ---
A commit references this bug:
Author: des
Date: Sat Feb 20 22:58:33 UTC 2016
New revision: 295843
URL: https://svnweb.freebsd.org/changeset/base/295843
Log:
MFH (r294326): fall back to sta
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Dag-Erling Smørgrav changed:
What|Removed |Added
Status|Open|In Progress
--
You are rec
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Dag-Erling Smørgrav changed:
What|Removed |Added
Status|Closed |Open
Flags|mfc
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Dag-Erling Smørgrav changed:
What|Removed |Added
Status|In Progress |Closed
Flags|m
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #8 from commit-h...@freebsd.org ---
A commit references this bug:
Author: des
Date: Sat Feb 20 13:36:25 UTC 2016
New revision: 295840
URL: https://svnweb.freebsd.org/changeset/base/295840
Log:
MFH (r273114, r273124): turn SSL
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
--- Comment #6 from CTurt ---
I didn't even notice this before, but you're right.
imgact_binmisc_add_entry:
sx_xlock(&interp_list_sx);
if (imgact_binmisc_find_entry(xbe->xbe_name) != NULL) {
sx_xunlock(&int
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
johan...@jo-t.de changed:
What|Removed |Added
CC||johan...@jo-t.de
--- Comment #5
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206761
Kubilay Kocak changed:
What|Removed |Added
Keywords||needs-patch, needs-qa,
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Baptiste Daroussin changed:
What|Removed |Added
Status|Open|In Progress
--
You are recei
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #7 from commit-h...@freebsd.org ---
A commit references this bug:
Author: bapt
Date: Tue Jan 19 15:02:38 UTC 2016
New revision: 294326
URL: https://svnweb.freebsd.org/changeset/base/294326
Log:
Test for /etc/ssl/cert.pem exis
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Baptiste Daroussin changed:
What|Removed |Added
Assignee|d...@freebsd.org |b...@freebsd.org
--
You are
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #6 from John W. O'Brien ---
Created attachment 165049
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=165049&action=edit
test for /etc/ssl/cert.pem existence to avoid masking SSL_CA_CERT_PATH
I have tested this and it
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #5 from Dag-Erling Smørgrav ---
Please attach the patch to this PR.
--
You are receiving this mail because:
You are on the CC list for the bug.
___
freebsd-security@freebsd.org mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #4 from John W. O'Brien ---
I have opened review D4771 with a proposed patch for this bug, and will
commence testing. I have submitted the same patch against the pkg project on
github as https://github.com/freebsd/pkg/pull/1368.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
--- Comment #3 from John W. O'Brien ---
The fundamental problem is that libfetch always sets the CA cert file
(defaulting to /usr/local/etc/ssl/cert.pem if it exists or to /etc/ssl/cert.pem
otherwise), and openssl will return from X509_STOR
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193871
Kubilay Kocak changed:
What|Removed |Added
Keywords||feature, needs-patch,
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
Gea-Suan Lin changed:
What|Removed |Added
CC||darkkil...@gmail.com
--- Comment #1
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
Mark Felder changed:
What|Removed |Added
CC||f...@freebsd.org
--- Comment #9 from
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201446
Xin LI changed:
What|Removed |Added
Status|Closed |Open
Assignee|delp...@freebsd.o
82 matches
Mail list logo
