Module Name: src
Committed By: snj
Date: Mon Sep 11 04:46:35 UTC 2017
Modified Files:
src/doc [netbsd-6-1]: CHANGES-6.1.6
Log Message:
1503
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.113 -r1.1.2.114 src/doc/CHANGES-6.1.6
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-6.1.6
diff -u src/doc/CHANGES-6.1.6:1.1.2.113 src/doc/CHANGES-6.1.6:1.1.2.114
--- src/doc/CHANGES-6.1.6:1.1.2.113 Sat Sep 9 16:54:15 2017
+++ src/doc/CHANGES-6.1.6 Mon Sep 11 04:46:35 2017
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-6.1.6,v 1.1.2.113 2017/09/09 16:54:15 snj Exp $
+# $NetBSD: CHANGES-6.1.6,v 1.1.2.114 2017/09/11 04:46:35 snj Exp $
A complete list of changes from the NetBSD 6.1.5 release to the NetBSD 6.1.6
release:
@@ -14807,9 +14807,27 @@ sys/arch/sparc64/sparc64/compat_13_machd
sys/compat/linux32/arch/amd64/linux32_machdep.c 1.39
-
Fix a ring0 escalation vulnerability in compat_linux32 where the
index of %cs is controlled by userland, making it easy to trigger
the page fault and get kernel privileges.
[maxv, ticket #1502]
+crypto/external/bsd/heimdal/dist/cf/check-getpwuid_r-posix.m4 1.1
+crypto/external/bsd/heimdal/dist/configure.ac 1.3
+crypto/external/bsd/heimdal/dist/kcm/client.c 1.3
+crypto/external/bsd/heimdal/dist/kcm/config.c 1.3
+crypto/external/bsd/heimdal/dist/lib/gssapi/mech/gss_pname_to_uid.c 1.3
+crypto/external/bsd/heimdal/dist/lib/hx509/softp11.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/config_file.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/get_default_principal.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/kuserok.c 1.3
+crypto/external/bsd/heimdal/dist/lib/roken/getxxyyy.c 1.3
+crypto/external/bsd/heimdal/dist/lib/roken/roken.h.in 1.5
+crypto/external/bsd/heimdal/include/config.h 1.9
+crypto/external/bsd/heimdal/include/roken.h 1.8
+
+ - Always use rk_getpwnam_r
+ - Use getpwuid_r instead of getpwuid, so that we don't trash
+ getpw*() internal buffers.
+ [mlelstv, ticket #1503]
+
