Module Name: src
Committed By: snj
Date: Mon Jun 29 23:48:53 UTC 2009
Modified Files:
src/doc [netbsd-4-0]: CHANGES-4.0.2
Log Message:
Ticket 1331.
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.39 -r1.1.2.40 src/doc/CHANGES-4.0.2
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-4.0.2
diff -u src/doc/CHANGES-4.0.2:1.1.2.39 src/doc/CHANGES-4.0.2:1.1.2.40
--- src/doc/CHANGES-4.0.2:1.1.2.39 Sun Jun 28 19:51:33 2009
+++ src/doc/CHANGES-4.0.2 Mon Jun 29 23:48:53 2009
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-4.0.2,v 1.1.2.39 2009/06/28 19:51:33 snj Exp $
+# $NetBSD: CHANGES-4.0.2,v 1.1.2.40 2009/06/29 23:48:53 snj Exp $
A complete list of changes from the NetBSD 4.0.1 release to the NetBSD 4.0.2
release:
@@ -651,3 +651,26 @@
a possible theoretical attack involving >= 1 billion ammo.
[dholland, ticket #1330]
+games/hack/extern.h 1.11
+games/hack/hack.do_name.c 1.9, 1.10
+games/hack/hack.eat.c 1.8
+games/hack/hack.end.c 1.12 via patch
+games/hack/hack.fight.c 1.10 via patch
+games/hack/hack.h 1.13
+games/hack/hack.invent.c 1.12, 1.13
+games/hack/hack.main.c 1.12, 1.13
+games/hack/hack.objnam.c 1.9
+games/hack/hack.options.c 1.9
+games/hack/hack.pri.c 1.11
+games/hack/hack.rip.c 1.10, 1.11
+games/hack/hack.shk.c 1.10
+games/hack/hack.topl.c 1.10, 1.11
+games/hack/hack.unix.c 1.12, 1.13
+
+ sprintf -> snprintf, plus some use of strlcpy/strlcat where
+ appropriate.
+ Fix two serious string-handling bugs (one exploitable, one
+ probably exploitable) and also add proper checking/paranoia
+ in several other places.
+ [dholland, ticket #1331]
+
