Module Name: src Committed By: snj Date: Mon Sep 11 04:46:47 UTC 2017
Modified Files: src/doc [netbsd-6-0]: CHANGES-6.0.7 Log Message: 1503 To generate a diff of this commit: cvs rdiff -u -r1.1.2.116 -r1.1.2.117 src/doc/CHANGES-6.0.7 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
Modified files: Index: src/doc/CHANGES-6.0.7 diff -u src/doc/CHANGES-6.0.7:1.1.2.116 src/doc/CHANGES-6.0.7:1.1.2.117 --- src/doc/CHANGES-6.0.7:1.1.2.116 Sat Sep 9 16:53:55 2017 +++ src/doc/CHANGES-6.0.7 Mon Sep 11 04:46:47 2017 @@ -1,4 +1,4 @@ -# $NetBSD: CHANGES-6.0.7,v 1.1.2.116 2017/09/09 16:53:55 snj Exp $ +# $NetBSD: CHANGES-6.0.7,v 1.1.2.117 2017/09/11 04:46:47 snj Exp $ A complete list of changes from the NetBSD 6.0.6 release to the NetBSD 6.0.7 release: @@ -15134,9 +15134,27 @@ sys/arch/sparc64/sparc64/compat_13_machd sys/compat/linux32/arch/amd64/linux32_machdep.c 1.39 - Fix a ring0 escalation vulnerability in compat_linux32 where the index of %cs is controlled by userland, making it easy to trigger the page fault and get kernel privileges. [maxv, ticket #1502] +crypto/external/bsd/heimdal/dist/cf/check-getpwuid_r-posix.m4 1.1 +crypto/external/bsd/heimdal/dist/configure.ac 1.3 +crypto/external/bsd/heimdal/dist/kcm/client.c 1.3 +crypto/external/bsd/heimdal/dist/kcm/config.c 1.3 +crypto/external/bsd/heimdal/dist/lib/gssapi/mech/gss_pname_to_uid.c 1.3 +crypto/external/bsd/heimdal/dist/lib/hx509/softp11.c 1.3 +crypto/external/bsd/heimdal/dist/lib/krb5/config_file.c 1.3 +crypto/external/bsd/heimdal/dist/lib/krb5/get_default_principal.c 1.3 +crypto/external/bsd/heimdal/dist/lib/krb5/kuserok.c 1.3 +crypto/external/bsd/heimdal/dist/lib/roken/getxxyyy.c 1.3 +crypto/external/bsd/heimdal/dist/lib/roken/roken.h.in 1.5 +crypto/external/bsd/heimdal/include/config.h 1.9 +crypto/external/bsd/heimdal/include/roken.h 1.8 + + - Always use rk_getpwnam_r + - Use getpwuid_r instead of getpwuid, so that we don't trash + getpw*() internal buffers. + [mlelstv, ticket #1503] +