CVS commit: [netbsd-5] src/doc

Mon, 29 Jun 2009 16:36:53 -0700 

Module Name:    src
Committed By:   snj
Date:           Mon Jun 29 23:36:13 UTC 2009

Modified Files:
        src/doc [netbsd-5]: CHANGES-5.1

Log Message:
Tickets 843 and 844.


To generate a diff of this commit:
cvs rdiff -u -r1.1.2.40 -r1.1.2.41 src/doc/CHANGES-5.1

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


Modified files:

Index: src/doc/CHANGES-5.1
diff -u src/doc/CHANGES-5.1:1.1.2.40 src/doc/CHANGES-5.1:1.1.2.41
--- src/doc/CHANGES-5.1:1.1.2.40	Sun Jun 28 19:55:12 2009
+++ src/doc/CHANGES-5.1	Mon Jun 29 23:36:13 2009
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-5.1,v 1.1.2.40 2009/06/28 19:55:12 snj Exp $
+# $NetBSD: CHANGES-5.1,v 1.1.2.41 2009/06/29 23:36:13 snj Exp $
 
 A complete list of changes from the NetBSD 5.0 release to the NetBSD 5.1
 release:
@@ -1388,3 +1388,37 @@
 	a possible theoretical attack involving >= 1 billion ammo.
 	[dholland, ticket #834]
 
+crypto/dist/ssh/cipher.c			1.22
+crypto/dist/ssh/cipher.h			1.3
+crypto/dist/ssh/packet.c			1.32
+
+	Add special handling for CBC cipher modes to make them appear
+	less favorable than CTR modes. Also, in order to avoid creating
+	oracles unnecessarily, change behavior in various situations
+	from "Drop connection" to "Ignore packets up to 256kB". This
+	affects CBC mode ciphers only.
+	[tonnerre, ticket #843]
+
+games/hack/extern.h				1.11
+games/hack/hack.do_name.c			1.9, 1.10
+games/hack/hack.eat.c				1.8
+games/hack/hack.end.c				1.12 via patch
+games/hack/hack.fight.c				1.10
+games/hack/hack.h				1.13 via patch
+games/hack/hack.invent.c			1.12, 1.13
+games/hack/hack.main.c				1.12, 1.13
+games/hack/hack.objnam.c			1.9
+games/hack/hack.options.c			1.9
+games/hack/hack.pri.c				1.11
+games/hack/hack.rip.c				1.10, 1.11
+games/hack/hack.shk.c				1.10
+games/hack/hack.topl.c				1.10, 1.11
+games/hack/hack.unix.c				1.12, 1.13
+
+	sprintf -> snprintf, plus some use of strlcpy/strlcat where
+	appropriate.
+	Fix two serious string-handling bugs (one exploitable, one
+	probably exploitable) and also add proper checking/paranoia in
+	several other places.
+	[dholland, ticket #844]
+

Reply via email to