|File: [cvs.NetBSD.org] / src / doc / Attic / CHANGES-6.0.2 (download)
Revision 220.127.116.11, Sun May 12 23:53:41 2013 UTC (7 years, 9 months ago) by riz
CVS Tags: netbsd-6-0-6-RELEASE, netbsd-6-0-5-RELEASE, netbsd-6-0-4-RELEASE, netbsd-6-0-3-RELEASE, netbsd-6-0-2-RELEASE
Changes since 18.104.22.168: +9 -1
Welcome to 6.0.2!
# $NetBSD: CHANGES-6.0.2,v 22.214.171.124 2013/05/12 23:53:41 riz Exp $
A complete list of changes from the NetBSD 6.0.1 release to the NetBSD 6.0.2
gnu/usr.bin/groff/tmac/mdoc.local patched by hand
sys/sys/param.h patched by hand
Welcome to 6.0.1_PATCH.
Fix off by one read error.
[msaitoh, ticket #761]
Avoid out-of-bounds access.
[msaitoh, ticket #762]
Prevent ktrace from being able to crash the kernel.
[mlelstv, ticket #778]
Show pass1 SIGINFO output on stderr like other passes, not on stdout.
[riastradh, ticket #779]
D.ROOT-SERVERS.NET changes IPv4 address.
[taca, ticket #781]
Change several int variables to size_t, ssize_t, or ptrdiff_t.
This should fix the bug described in CVE-2012-5667 when an input
line is so long that its length cannot be stored in an int
[apb, ticket #780]
Fix a security issue: when we are reseeding a PRNG seeded early in
boot before we had ever had any entropy, if something else has
consumed the entropy that triggered the immediate reseed, we can
reseed with as little as sizeof(int) bytes of entropy.
[tls, ticket #800]
Fixes for pserialize(9).
[rmind, ticket #782]
sys/dist/ipf/netinet/ip_fil_netbsd.c 1.4 via patch
Fix off-by-one read error.
[msaitoh, ticket #787]
sys/kern/subr_vmem.c 1.77 via patch,1.81
Fix a lock order reversal, and a lock release.
[para, ticket #789]
Set resource limits to prevent potential consumption of all
[msaitoh, ticket #790]
Fix a bug in parsedate(3) where it would treat all input
as if it were in the local time zone, even if the input should have
been treated as a time in UTC or some other time zone.
[apb, ticket #791]
Fix memory pool corruption when freeing kmem with wrong size.
[hannken, ticket #793]
The console major number is not always 0.
[apb, ticket #801]
Re-instate backwards compatible
[jym, ticket #802]
Fix a multiple-free bug.
[manu, ticket #806]
Don't crash when running multiple dump -X. PR#47514.
[hannken, ticket #808]
Fix panic in fss(4). PR#47020.
[hannken, ticket #810]
Avoid possible race with softint handler.
[rmind, ticket #811]
Fix awk segfault due to NULL dereference. PR#47553.
[cheusov, ticket #836]
Merge tzdata2013a and tzdata2013b from
Important changes from tzdata2012j to tzdata2013a:
Chile's 2013 rules, and we guess rules for 2014 and later, will be
the same as 2012, namely Apr Sun>=23 03:00 UTC to
Sep Sun>=2 04:00 UTC.
New Zones Asia/Khandyga, Asia/Ust-Nera, Europe/Busingen.
Many changes affect historical time stamps before 1940.
Important changes from tzdata2013a to tzdata2013b:
Haiti uses US daylight-saving rules this year, and presumably
Paraguay will end DST on March 24 this year.
Morocco does not observe DST during Ramadan;
try to predict Ramadan in Morocco as best we can.
[apb, ticket #845]
Fix a crash which can happen with sysctl security.curtain=1
[martin, ticket #839]
Fix longjmp/setjmp on alpha for statically linked programs
such as those in /rescue.
[martin, ticket #846]
Re-fix 'fix' for SA-2013-003. Because the original fix evaluated a
flag backwards, in low-entropy conditions there was a time interval
in which /dev/urandom could still output bits on an unacceptably
short key. Output from /dev/random was *NOT* impacted.
Eliminate the flag in question -- it's safest to always fill the
requested key buffer with output from the entropy-pool, even if we
let the caller know we couldn't provide bytes with the full entropy
Advisory will be updated soon with a full worst-case analysis of the
/dev/urandom output path in the presence of either variant of the
SA-2013-003 bug. Fortunately, because a large amount of other input
is mixed in before users can obtain any output, it doesn't look as
dangerous in practice as I'd feared it might be.
[tls, ticket #859]
Cast constants to appropriate types to fix crashes in ptree(9).
[rmind, ticket #851]
Fix sendto(2) issue with IPv6 UDP datagrams. PR#47408.
[christos, ticket #853]
Wrong memcpy() can cause memory corruption. PR#13082.
[christos, ticket #854]
Use printf_nolog() as i386 when print remaing bytes at crash dump to
prevent message buffer with cound down.
[taca, ticket #866]
Show in-filesystem quotas flag instead of unknown flag bit.
[taca, ticket #867]
xc_highpri: fix assert.
[rmind, ticket #868]
PR/46618: Onno van der Linden: realpath(3) isn't SUSv4 compliant
(and causes flactag 2.0.4 to dump core). Fix to accept a NULL
argument for resolvedpath.
[christos, ticket #874]
properly return NULL for failed allocations not 0x8 with size checks
[para, ticket #876]
sys/dev/scsipi/ses.c 1.45 via patch
Add detach support for ses(4), fixing a panic. PR#44283.
[jakllsch, ticket #878]
Fix an openpty() failed error during install for hp300.
[tsutsui, ticket #880]
Fix a kernel panic which can be triggered by printf(1) on x68k.
[isaki, ticket #881]
Fix PR/47123 (sysinst failure) for hp700 as well.
[skrll, ticket #882]
Merge tzdata2013c from
[apb, ticket #886]
Fix a typo that causes recent QEMU to die configuring a vioif.
[minoura, ticket #890]
distrib/notes/common/main patched by hand
doc/LAST_MINUTE patched by hand
doc/README.files patched by hand
sys/sys/param.h patched by hand
Welcome to 6.0.2!