laffer1 | 17 Sep 03:39 2014

src [6773] trunk/sys/dev/drm2/drm.h: add midnightbsd

Revision: 6773
          http://svnweb.midnightbsd.org/src/?rev=6773
Author:   laffer1
Date:     2014-09-16 21:39:28 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
add midnightbsd

Modified Paths:
--------------
    trunk/sys/dev/drm2/drm.h

Modified: trunk/sys/dev/drm2/drm.h
===================================================================
--- trunk/sys/dev/drm2/drm.h	2014-09-17 01:37:14 UTC (rev 6772)
+++ trunk/sys/dev/drm2/drm.h	2014-09-17 01:39:28 UTC (rev 6773)
 <at>  <at>  -1,4 +1,3  <at>  <at> 
-/* $MidnightBSD$ */
 /**
  * \file drm.h
  * Header for the Direct Rendering Manager
 <at>  <at>  -35,7 +34,7  <at>  <at> 
  */

 #include <sys/cdefs.h>
-__FBSDID("$FreeBSD: release/9.2.0/sys/dev/drm2/drm.h 235783 2012-05-22 11:07:44Z kib $");
+__FBSDID("$FreeBSD: stable/9/sys/dev/drm2/drm.h 261673 2014-02-09 19:54:39Z dumbbell $");

 /**
  * \mainpage
(Continue reading)

laffer1 | 17 Sep 03:37 2014

src [6772] trunk/sys/dev/drm2/drm_global.h: fix missing file

Revision: 6772
          http://svnweb.midnightbsd.org/src/?rev=6772
Author:   laffer1
Date:     2014-09-16 21:37:14 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
fix missing file

Added Paths:
-----------
    trunk/sys/dev/drm2/drm_global.h

Added: trunk/sys/dev/drm2/drm_global.h
===================================================================
--- trunk/sys/dev/drm2/drm_global.h	                        (rev 0)
+++ trunk/sys/dev/drm2/drm_global.h	2014-09-17 01:37:14 UTC (rev 6772)
 <at>  <at>  -0,0 +1,56  <at>  <at> 
+/**************************************************************************
+ *
+ * Copyright 2008-2009 VMware, Inc., Palo Alto, CA., USA
+ * All Rights Reserved.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a
+ * copy of this software and associated documentation files (the
+ * "Software"), to deal in the Software without restriction, including
+ * without limitation the rights to use, copy, modify, merge, publish,
+ * distribute, sub license, and/or sell copies of the Software, and to
+ * permit persons to whom the Software is furnished to do so, subject to
+ * the following conditions:
+ *
(Continue reading)

laffer1 | 17 Sep 03:35 2014

src [6771] trunk/sys/dev/drm2/drm_ioc32.c: fix missing file

Revision: 6771
          http://svnweb.midnightbsd.org/src/?rev=6771
Author:   laffer1
Date:     2014-09-16 21:35:34 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
fix missing file

Added Paths:
-----------
    trunk/sys/dev/drm2/drm_ioc32.c

Added: trunk/sys/dev/drm2/drm_ioc32.c
===================================================================
--- trunk/sys/dev/drm2/drm_ioc32.c	                        (rev 0)
+++ trunk/sys/dev/drm2/drm_ioc32.c	2014-09-17 01:35:34 UTC (rev 6771)
 <at>  <at>  -0,0 +1,788  <at>  <at> 
+/*-
+ * Copyright (C) Paul Mackerras 2005.
+ * All Rights Reserved.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a
+ * copy of this software and associated documentation files (the "Software"),
+ * to deal in the Software without restriction, including without limitation
+ * the rights to use, copy, modify, merge, publish, distribute, sublicense,
+ * and/or sell copies of the Software, and to permit persons to whom the
+ * Software is furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice (including the next
+ * paragraph) shall be included in all copies or substantial portions of the
(Continue reading)

laffer1 | 17 Sep 03:32 2014

src [6770] trunk/sys/dev/drm2/drm_global.c: fix missing file

Revision: 6770
          http://svnweb.midnightbsd.org/src/?rev=6770
Author:   laffer1
Date:     2014-09-16 21:32:06 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
fix missing file

Added Paths:
-----------
    trunk/sys/dev/drm2/drm_global.c

Added: trunk/sys/dev/drm2/drm_global.c
===================================================================
--- trunk/sys/dev/drm2/drm_global.c	                        (rev 0)
+++ trunk/sys/dev/drm2/drm_global.c	2014-09-17 01:32:06 UTC (rev 6770)
 <at>  <at>  -0,0 +1,111  <at>  <at> 
+/**************************************************************************
+ *
+ * Copyright 2008-2009 VMware, Inc., Palo Alto, CA., USA
+ * All Rights Reserved.
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a
+ * copy of this software and associated documentation files (the
+ * "Software"), to deal in the Software without restriction, including
+ * without limitation the rights to use, copy, modify, merge, publish,
+ * distribute, sub license, and/or sell copies of the Software, and to
+ * permit persons to whom the Software is furnished to do so, subject to
+ * the following conditions:
+ *
(Continue reading)

laffer1 | 17 Sep 02:13 2014

www [554] trunk/index.html: update security section

Revision: 554
          http://svnweb.midnightbsd.org/www/?rev=554
Author:   laffer1
Date:     2014-09-16 20:13:18 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
update security section

Modified Paths:
--------------
    trunk/index.html

Modified: trunk/index.html
===================================================================
--- trunk/index.html	2014-09-17 00:10:22 UTC (rev 553)
+++ trunk/index.html	2014-09-17 00:13:18 UTC (rev 554)
 <at>  <at>  -49,19 +49,21  <at>  <at> 
 					<h2><a href="security/">Security &#187;</a></h2>

 					<blockquote>
-						<p class="date">September 10, 2013</p>
-						<p class="update">MidnightBSD 0.4-RELEASE-p4<br>
-						nullfs(5) and ifioctl...
+						<p class="date">September 16, 2014</p>
+						<p class="update">MidnightBSD 0.4-RELEASE-p15<br>
+						Fix a security issue with TCP SYN.
 						</p>
-						<p class="more"><a href="security/#a20130910">Read more ...</a></p>
+						<p class="more"><a href="security/#a20140916">Read more ...</a></p>
 					</blockquote>					
(Continue reading)

laffer1 | 17 Sep 02:10 2014

www [553] trunk/security/index.html: more fun

Revision: 553
          http://svnweb.midnightbsd.org/www/?rev=553
Author:   laffer1
Date:     2014-09-16 20:10:22 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
more fun

Modified Paths:
--------------
    trunk/security/index.html

Modified: trunk/security/index.html
===================================================================
--- trunk/security/index.html	2014-09-17 00:05:46 UTC (rev 552)
+++ trunk/security/index.html	2014-09-17 00:10:22 UTC (rev 553)
 <at>  <at>  -17,6 +17,38  <at>  <at> 
 			<div id="text">
 				<h2><img src="../images/oxygen/security32.png" alt="" /> Security Updates</h2>

+				<blockquote class="bluebox" id="a20140916">
+					<h3>September 16, 2014</h3>
+       		 			<p>0.4-RELEASE-p15</p>
+
+       					 <p>Fix a security issue with TCP SYN.
+
+				        <p>When a segment with the SYN flag for an already existing connection arrives,
+				        the TCP stack tears down the connection, bypassing a check that the
+				        sequence number in the segment is in the expected window.
+				</blockquote>
(Continue reading)

laffer1 | 17 Sep 02:05 2014

www [552] trunk/security/index.html: add more vulnerabilities

Revision: 552
          http://svnweb.midnightbsd.org/www/?rev=552
Author:   laffer1
Date:     2014-09-16 20:05:46 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
add more vulnerabilities

Modified Paths:
--------------
    trunk/security/index.html

Modified: trunk/security/index.html
===================================================================
--- trunk/security/index.html	2014-09-17 00:01:26 UTC (rev 551)
+++ trunk/security/index.html	2014-09-17 00:05:46 UTC (rev 552)
 <at>  <at>  -17,6 +17,40  <at>  <at> 
 			<div id="text">
 				<h2><img src="../images/oxygen/security32.png" alt="" /> Security Updates</h2>

+				<blockquote class="bluebox" id="a20140710">	
+					<h3>July 10, 2014</h3>
+					<p>0.4-RELEASE-p13</p>
+					<p>Fix a vulnerability in the control message API. A buffer is not properly cleared
+        before sharing with userland.</p>
+				</blockquote>
+
+				<blockquote class="bluebox" id="a20140605">
+					<h3>June 5, 2014</h3>
+					<p>0.4-RELEASE-p12</p>
(Continue reading)

laffer1 | 17 Sep 02:01 2014

www [551] trunk/security/index.html: update some security issues

Revision: 551
          http://svnweb.midnightbsd.org/www/?rev=551
Author:   laffer1
Date:     2014-09-16 20:01:26 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
update some security issues

Modified Paths:
--------------
    trunk/security/index.html

Modified: trunk/security/index.html
===================================================================
--- trunk/security/index.html	2014-06-15 16:32:16 UTC (rev 550)
+++ trunk/security/index.html	2014-09-17 00:01:26 UTC (rev 551)
 <at>  <at>  -16,6 +16,48  <at>  <at> 
 			<div class="clear"></div>
 			<div id="text">
 				<h2><img src="../images/oxygen/security32.png" alt="" /> Security Updates</h2>
+
+				<blockquote class="bluebox" id="a20140430">
+					<h3>April 30, 2014</h3>
+					<p>0.4-RELEASE-p10</p>
+					<p>Fix a TCP reassembly bug that could result in a DOS attack
+				        of the system. It may be possible to obtain portions
+				        of kernel memory as well.</p>
+				</blockquote>	
+
+				<blockquote class="bluebox" id="a20140409">
(Continue reading)

laffer1 | 17 Sep 01:49 2014

src [6769] stable/0.4: 0.4-RELEASE-p15

Revision: 6769
          http://svnweb.midnightbsd.org/src/?rev=6769
Author:   laffer1
Date:     2014-09-16 19:49:28 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
0.4-RELEASE-p15

20140916:
        Fix a security issue with TCP SYN.

        When a segment with the SYN flag for an already existing connection arrives,
        the TCP stack tears down the connection, bypassing a check that the
        sequence number in the segment is in the expected window.

Modified Paths:
--------------
    stable/0.4/UPDATING
    stable/0.4/sys/conf/newvers.sh
    stable/0.4/sys/netinet/tcp_input.c

Modified: stable/0.4/UPDATING
===================================================================
--- stable/0.4/UPDATING	2014-09-16 23:42:27 UTC (rev 6768)
+++ stable/0.4/UPDATING	2014-09-16 23:49:28 UTC (rev 6769)
 <at>  <at>  -1,5 +1,14  <at>  <at> 
 Updating Information for MidnightBSD users.

+20140916:
+	0.4-RELEASE-p15
(Continue reading)

laffer1 | 17 Sep 01:42 2014

src [6768] trunk: 20140916:

Revision: 6768
          http://svnweb.midnightbsd.org/src/?rev=6768
Author:   laffer1
Date:     2014-09-16 19:42:27 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
20140916:
        Fix a security issue with TCP SYN.

        When a segment with the SYN flag for an already existing connection arrives,
        the TCP stack tears down the connection, bypassing a check that the
        sequence number in the segment is in the expected window.

Obtained from:	FreeBSD

Modified Paths:
--------------
    trunk/UPDATING
    trunk/sys/netinet/tcp_input.c
    trunk/sys/sys/param.h

Modified: trunk/UPDATING
===================================================================
--- trunk/UPDATING	2014-09-16 23:41:17 UTC (rev 6767)
+++ trunk/UPDATING	2014-09-16 23:42:27 UTC (rev 6768)
 <at>  <at>  -1,5 +1,12  <at>  <at> 
 Updating Information for MidnightBSD users.

+20140916:
+        Fix a security issue with TCP SYN.
(Continue reading)

laffer1 | 17 Sep 01:41 2014

src [6767] stable/0.5: 20140916:

Revision: 6767
          http://svnweb.midnightbsd.org/src/?rev=6767
Author:   laffer1
Date:     2014-09-16 19:41:17 -0400 (Tue, 16 Sep 2014)
Log Message:
-----------
20140916:
        Fix a security issue with TCP SYN.

        When a segment with the SYN flag for an already existing connection arrives,
        the TCP stack tears down the connection, bypassing a check that the
        sequence number in the segment is in the expected window.

Obtained from: FreeBSD

Modified Paths:
--------------
    stable/0.5/UPDATING
    stable/0.5/sys/netinet/tcp_input.c
    stable/0.5/sys/sys/param.h

Modified: stable/0.5/UPDATING
===================================================================
--- stable/0.5/UPDATING	2014-09-14 03:55:54 UTC (rev 6766)
+++ stable/0.5/UPDATING	2014-09-16 23:41:17 UTC (rev 6767)
 <at>  <at>  -1,5 +1,12  <at>  <at> 
 Updating Information for MidnightBSD users.

+20140916:
+	Fix a security issue with TCP SYN.
(Continue reading)


Gmane