Module Name: src
Committed By: snj
Date: Mon Sep 11 04:46:47 UTC 2017
Modified Files:
src/doc [netbsd-6-0]: CHANGES-6.0.7
Log Message:
1503
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.116 -r1.1.2.117 src/doc/CHANGES-6.0.7
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-6.0.7
diff -u src/doc/CHANGES-6.0.7:1.1.2.116 src/doc/CHANGES-6.0.7:1.1.2.117
--- src/doc/CHANGES-6.0.7:1.1.2.116 Sat Sep 9 16:53:55 2017
+++ src/doc/CHANGES-6.0.7 Mon Sep 11 04:46:47 2017
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-6.0.7,v 1.1.2.116 2017/09/09 16:53:55 snj Exp $
+# $NetBSD: CHANGES-6.0.7,v 1.1.2.117 2017/09/11 04:46:47 snj Exp $
A complete list of changes from the NetBSD 6.0.6 release to the NetBSD 6.0.7
release:
@@ -15134,9 +15134,27 @@ sys/arch/sparc64/sparc64/compat_13_machd
sys/compat/linux32/arch/amd64/linux32_machdep.c 1.39
-
Fix a ring0 escalation vulnerability in compat_linux32 where the
index of %cs is controlled by userland, making it easy to trigger
the page fault and get kernel privileges.
[maxv, ticket #1502]
+crypto/external/bsd/heimdal/dist/cf/check-getpwuid_r-posix.m4 1.1
+crypto/external/bsd/heimdal/dist/configure.ac 1.3
+crypto/external/bsd/heimdal/dist/kcm/client.c 1.3
+crypto/external/bsd/heimdal/dist/kcm/config.c 1.3
+crypto/external/bsd/heimdal/dist/lib/gssapi/mech/gss_pname_to_uid.c 1.3
+crypto/external/bsd/heimdal/dist/lib/hx509/softp11.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/config_file.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/get_default_principal.c 1.3
+crypto/external/bsd/heimdal/dist/lib/krb5/kuserok.c 1.3
+crypto/external/bsd/heimdal/dist/lib/roken/getxxyyy.c 1.3
+crypto/external/bsd/heimdal/dist/lib/roken/roken.h.in 1.5
+crypto/external/bsd/heimdal/include/config.h 1.9
+crypto/external/bsd/heimdal/include/roken.h 1.8
+
+ - Always use rk_getpwnam_r
+ - Use getpwuid_r instead of getpwuid, so that we don't trash
+ getpw*() internal buffers.
+ [mlelstv, ticket #1503]
+
