Page MenuHomeFreeBSD
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Fri, Feb 21

gordon committed R9:31a650820fb9: Add SA-25:05.openssh. (authored by gordon).
Add SA-25:05.openssh.
Fri, Feb 21, 3:09 AM
gordon committed rG14c733f25493: ssh: Bump VersionAddendum for CVE fixes (authored by emaste).
ssh: Bump VersionAddendum for CVE fixes
Fri, Feb 21, 2:58 AM
gordon committed rG469f61e89ff7: ssh: Fix cases where error codes were not correctly set (authored by emaste).
ssh: Fix cases where error codes were not correctly set
Fri, Feb 21, 2:58 AM
gordon committed rGc57fcc2d5307: ssh: Don't reply to PING in preauth phase or during KEX (authored by emaste).
ssh: Don't reply to PING in preauth phase or during KEX
Fri, Feb 21, 2:58 AM
gordon committed rGfe49460873e0: ssh: Bump VersionAddendum for CVE fixes (authored by emaste).
ssh: Bump VersionAddendum for CVE fixes
Fri, Feb 21, 2:58 AM
gordon committed rG3053f92a163c: ssh: Fix cases where error codes were not correctly set (authored by emaste).
ssh: Fix cases where error codes were not correctly set
Fri, Feb 21, 2:58 AM
gordon committed rG8d0540600b1e: ssh: Don't reply to PING in preauth phase or during KEX (authored by emaste).
ssh: Don't reply to PING in preauth phase or during KEX
Fri, Feb 21, 2:58 AM
gordon committed rG27f132c05c39: Add updating entries and bump version. (authored by gordon).
Add updating entries and bump version.
Fri, Feb 21, 2:58 AM
gordon committed rG4b8a2f716588: ssh: Bump VersionAddendum for CVE fixes (authored by emaste).
ssh: Bump VersionAddendum for CVE fixes
Fri, Feb 21, 2:57 AM
gordon committed rGf389e68ca980: Add UPDATING entries and bump version. (authored by gordon).
Add UPDATING entries and bump version.
Fri, Feb 21, 2:57 AM
gordon committed rG1920babc310a: ssh: Fix cases where error codes were not correctly set (authored by emaste).
ssh: Fix cases where error codes were not correctly set
Fri, Feb 21, 2:57 AM
gordon committed rG3ae196925d29: ssh: Don't reply to PING in preauth phase or during KEX (authored by emaste).
ssh: Don't reply to PING in preauth phase or during KEX
Fri, Feb 21, 2:57 AM
gordon committed rGac2cbb46b5f1: Add UPDATING entries and bump version (authored by gordon).
Add UPDATING entries and bump version
Fri, Feb 21, 2:57 AM

Jan 30 2025

gordon accepted D48719: vmimage.subr: Redirect etcupdate log to stdout.

LGTM

Jan 30 2025, 7:17 PM

Jan 29 2025

gordon added a comment to D48719: vmimage.subr: Redirect etcupdate log to stdout.

As long as it doesn't end up as a build product, makes sense to me. Want to update the review with a new patch and we'll go from there?

Jan 29 2025, 11:48 PM
gordon committed R9:d8d095b46996: Move this to the proper name. (authored by gordon).
Move this to the proper name.
Jan 29 2025, 9:33 PM
gordon committed R9:46c1baa951ca: Add EN-25:01 through EN-25:03 and SA-25:01 through SA-25:04. (authored by gordon).
Add EN-25:01 through EN-25:03 and SA-25:01 through SA-25:04.
Jan 29 2025, 8:22 PM

Jan 12 2025

gordon committed R9:a8177cef3c88: Update expiration date on existing keys for security-officer. (authored by gordon).
Update expiration date on existing keys for security-officer.
Jan 12 2025, 10:31 PM

Nov 13 2024

gordon committed R9:ca283e012d55: Correct CVE typo for SA-24:17.bhyve. (authored by gordon).
Correct CVE typo for SA-24:17.bhyve.
Nov 13 2024, 4:11 AM

Oct 29 2024

gordon committed R9:f33f4dbfb9ab: Add EN-24:17 and SA-24:17 through SA-24:19. (authored by gordon).
Add EN-24:17 and SA-24:17 through SA-24:19.
Oct 29 2024, 9:18 PM

Sep 20 2024

gordon committed R9:a1544a0e91fb: Correct the reference to FreeBSD-SA-24:16.libnv. (authored by gordon).
Correct the reference to FreeBSD-SA-24:16.libnv.
Sep 20 2024, 11:31 AM
gordon committed R9:87d45d54be03: allanjude is the core team liaison for secteam. (authored by gordon).
allanjude is the core team liaison for secteam.
Sep 20 2024, 9:54 AM

Sep 19 2024

gordon committed R9:7185d12e8443: security: Fixup incorrect pathes in EN-24:16.pf. (authored by gordon).
security: Fixup incorrect pathes in EN-24:16.pf.
Sep 19 2024, 3:36 PM
gordon committed R9:6c3d10765376: Add EN-24:16, SA-24:15, and SA-24:16. Update SA-24:05 and SA-24:09. (authored by gordon).
Add EN-24:16, SA-24:15, and SA-24:16. Update SA-24:05 and SA-24:09.
Sep 19 2024, 3:11 PM
gordon committed rG417e81a40091: libnv: correct the calculation of the structure's size (authored by oshogbo).
libnv: correct the calculation of the structure's size
Sep 19 2024, 1:36 PM
gordon committed rGe7a790dc3ffe: bhyve: improve input validation in pci_xhci (authored by khorben_defora.org).
bhyve: improve input validation in pci_xhci
Sep 19 2024, 1:36 PM
gordon committed rGc31be7380af7: Add UPDATING entries and bump revision. (authored by gordon).
Add UPDATING entries and bump revision.
Sep 19 2024, 1:36 PM
gordon committed rG5f035df278cc: bhyve: improve input validation in pci_xhci (authored by khorben_defora.org).
bhyve: improve input validation in pci_xhci
Sep 19 2024, 1:36 PM
gordon committed rG2cffa6354d9f: libnv: correct the calculation of the structure's size (authored by oshogbo).
libnv: correct the calculation of the structure's size
Sep 19 2024, 1:36 PM
gordon committed rGbc3877972ebd: Add UPDATING entries and bump revision. (authored by gordon).
Add UPDATING entries and bump revision.
Sep 19 2024, 1:35 PM
gordon committed rGba46f1174972: bhyve: improve input validation in pci_xhci (authored by khorben_defora.org).
bhyve: improve input validation in pci_xhci
Sep 19 2024, 1:31 PM
gordon committed rGe9d57be06e23: libnv: correct the calculation of the structure's size (authored by oshogbo).
libnv: correct the calculation of the structure's size
Sep 19 2024, 1:31 PM
gordon committed rGf10e328cb192: Add UPDATING entries and bump revision. (authored by gordon).
Add UPDATING entries and bump revision.
Sep 19 2024, 1:31 PM
gordon committed rG3c6c0dcb5acb: bhyve: improve input validation in pci_xhci (authored by khorben_defora.org).
bhyve: improve input validation in pci_xhci
Sep 19 2024, 1:31 PM
gordon committed rGf67468e6e5e2: libnv: correct the calculation of the structure's size (authored by oshogbo).
libnv: correct the calculation of the structure's size
Sep 19 2024, 1:31 PM
gordon committed rG524a425d30fc: Add UPDATING entries and bump revision. (authored by gordon).
Add UPDATING entries and bump revision.
Sep 19 2024, 1:30 PM

Sep 17 2024

gordon committed R9:a7b674fe1cdc: website/security: Reverse sort release table. (authored by gordon).
website/security: Reverse sort release table.
Sep 17 2024, 11:42 AM

Sep 8 2024

gordon committed rGcab90be6a580: openssl: Remove the specific version numbers from the instructions. (authored by gordon).
openssl: Remove the specific version numbers from the instructions.
Sep 8 2024, 4:46 PM

Sep 7 2024

gordon committed rG4086a0635d38: openssl: Update upgrade instructions. (authored by gordon).
openssl: Update upgrade instructions.
Sep 7 2024, 11:46 PM
gordon accepted D46603: Update config/build info for OpenSSL 3.0.15.
Sep 7 2024, 6:02 PM
gordon accepted D46602: openssl: Import OpenSSL 3.0.15..

Assuming this is a straight import, LGTM.

Sep 7 2024, 6:02 PM
gordon committed rG3d8501d90e24: openssl: Remove fips module from base system. (authored by gordon).
openssl: Remove fips module from base system.
Sep 7 2024, 4:18 AM

Sep 4 2024

gordon committed R9:b736cf1ce695: Add advisories to relavent toml files. (authored by gordon).
Add advisories to relavent toml files.
Sep 4 2024, 11:22 PM
gordon committed R9:82c36e540374: Add EN-24:15 and SA-24:09 through SA-24:14. (authored by gordon).
Add EN-24:15 and SA-24:09 through SA-24:14.
Sep 4 2024, 11:18 PM
gordon committed rG86d01789bf41: calendar: don't setlogin(2) in the -a user handlers (authored by kevans).
calendar: don't setlogin(2) in the -a user handlers
Sep 4 2024, 9:35 PM
gordon committed rG108164cf95d9: openssl: Import OpenSSL 3.0.15. (authored by gordon).
openssl: Import OpenSSL 3.0.15.
Sep 4 2024, 5:47 AM

Sep 3 2024

gordon committed rG5946b0c6cbc7: openssl: Avoid type errors in EAI-related name check logic. (authored by Viktor Dukhovni <viktor@openssl.org>).
openssl: Avoid type errors in EAI-related name check logic.
Sep 3 2024, 5:09 PM
gordon committed rGfbd465f26340: openssl: Bring over fix for CVE-2024-6119 from vendor/openssl-3.0. (authored by gordon).
openssl: Bring over fix for CVE-2024-6119 from vendor/openssl-3.0.
Sep 3 2024, 4:50 PM
gordon committed rGe60dbfd00b00: Avoid type errors in EAI-related name check logic. (authored by Viktor Dukhovni <viktor@openssl.org>).
Avoid type errors in EAI-related name check logic.
Sep 3 2024, 4:47 PM

Aug 31 2024

gordon committed rG86dd740dd73a: openssl: Remove fips module from base system. (authored by gordon).
openssl: Remove fips module from base system.
Aug 31 2024, 4:28 PM
gordon closed D46223: openssl: Remove fips module from base system..
Aug 31 2024, 4:28 PM
gordon committed rG5a542a605537: release: Redirect etcupdate logfile to /dev/null. (authored by gordon).
release: Redirect etcupdate logfile to /dev/null.
Aug 31 2024, 4:20 PM
gordon committed rGb8abafb4de41: release: Redirect etcupdate logfile to /dev/null. (authored by gordon).
release: Redirect etcupdate logfile to /dev/null.
Aug 31 2024, 4:19 PM

Aug 24 2024

gordon committed rGe972e408d19a: release: Redirect etcupdate logfile to /dev/null. (authored by gordon).
release: Redirect etcupdate logfile to /dev/null.
Aug 24 2024, 5:40 AM
gordon closed D46317: release: Don't create an etcupdate logfile during make release..
Aug 24 2024, 5:39 AM

Aug 18 2024

gordon added a reviewer for D46317: release: Don't create an etcupdate logfile during make release.: releng.

Adding all of releng instead of just cperciva

Aug 18 2024, 8:05 PM
gordon added a comment to D46317: release: Don't create an etcupdate logfile during make release..

Note this is a direct commit to releng/13.4, although it might be better to do a corresponding change to main (slightly different patch needed) -> stable/13 -> releng/13.4.

Aug 18 2024, 8:01 PM
gordon requested review of D46317: release: Don't create an etcupdate logfile during make release..
Aug 18 2024, 7:51 PM

Aug 9 2024

gordon committed R9:a7a71d789ede: SA-24:07: Correct patch paths. (authored by gordon).
SA-24:07: Correct patch paths.
Aug 9 2024, 11:30 PM

Aug 7 2024

gordon committed R9:a7ac9239fbae: website: Add EN-24:14 and SA-24:05 through SA-24:08. (authored by gordon).
website: Add EN-24:14 and SA-24:05 through SA-24:08.
Aug 7 2024, 2:42 PM

Aug 4 2024

gordon added a reviewer for D46223: openssl: Remove fips module from base system.: emaste.

Not sure who else to get this reviewed by, but we should stop shipping fips.so.

Aug 4 2024, 9:32 PM
gordon requested review of D46223: openssl: Remove fips module from base system..
Aug 4 2024, 9:31 PM
gordon committed R9:0e9f122c25a9: website: Retire last remaining bits of 13.2. (authored by gordon).
website: Retire last remaining bits of 13.2.
Aug 4 2024, 4:00 AM

Jul 15 2024

gordon committed R9:3109762ce557: Update ssh host keys. (authored by gordon).
Update ssh host keys.
Jul 15 2024, 8:07 AM

Jul 2 2024

gordon accepted D45823: OpenSSH: correct logic error in ObscureKeystrokeTiming.
Jul 2 2024, 8:53 PM
gordon accepted D45840: openssh: use '' instead of `' in config.h.

LGTM

Jul 2 2024, 8:52 PM

Jul 1 2024

gordon committed R9:30eacf03429e: Add SA-24:04.openssh. (authored by gordon).
Add SA-24:04.openssh.
Jul 1 2024, 8:46 AM

Jun 19 2024

gordon committed R9:ccb8730e4a6c: Add EN-24:10 through EN-24:13. (authored by gordon).
Add EN-24:10 through EN-24:13.
Jun 19 2024, 8:56 PM
gordon committed rGeb410545d00d: killpg(): more carefully avoid LoR (authored by kib).
killpg(): more carefully avoid LoR
Jun 19 2024, 8:38 PM
gordon committed rGd45cf1d2f124: ldns: Ignore commented-out lines in resolv.conf. (authored by des).
ldns: Ignore commented-out lines in resolv.conf.
Jun 19 2024, 8:38 PM
gordon committed rGbdf75e830a77: ldns: Ignore commented-out lines in resolv.conf. (authored by des).
ldns: Ignore commented-out lines in resolv.conf.
Jun 19 2024, 8:38 PM
gordon committed rG2dc3f3a5e231: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Jun 19 2024, 8:37 PM
gordon committed rGbdba8eaa3db6: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Jun 19 2024, 8:37 PM
gordon committed rGf566b7eb8d94: Destroy ARC buffer in case of fill error (authored by mav).
Destroy ARC buffer in case of fill error
Jun 19 2024, 8:37 PM
gordon committed rG8e0e6b428cb8: Merge commit 382f70a877f0 from llvm-project (by Louis Dionne): (authored by dim).
Merge commit 382f70a877f0 from llvm-project (by Louis Dionne):
Jun 19 2024, 8:37 PM
gordon committed rG0892dff10444: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Jun 19 2024, 8:37 PM

Jun 17 2024

gordon accepted D45585: ifconfig: turn interface address without mask into an error.

Seeing how CIDR has been a thing for around 30 years, erroring without a netmask is the appropriate action here.

Jun 17 2024, 2:28 PM

Jun 3 2024

gordon committed rGa68e4f7a0652: Migrate from printb to print_bits for locally defined bit fields. (authored by gordon).
Migrate from printb to print_bits for locally defined bit fields.
Jun 3 2024, 3:52 PM
gordon committed rGc3e9423743d9: Move print_bits to ifconfig.c and make available to other src files. (authored by gordon).
Move print_bits to ifconfig.c and make available to other src files.
Jun 3 2024, 3:52 PM
gordon closed D45441: Summary: Migrate from printb to print_bits for locally defined bit fields..
Jun 3 2024, 3:52 PM
gordon updated the diff for D45441: Summary: Migrate from printb to print_bits for locally defined bit fields..
  • Move print_bits to ifconfig.c and make available to other src files.
  • Migrate from printb to print_bits for locally defined bit fields.
Jun 3 2024, 3:18 PM
gordon updated the diff for D45441: Summary: Migrate from printb to print_bits for locally defined bit fields..

Address comments from emaste.

Jun 3 2024, 3:05 PM
gordon added inline comments to D45441: Summary: Migrate from printb to print_bits for locally defined bit fields..
Jun 3 2024, 3:03 PM

Jun 1 2024

gordon requested review of D45441: Summary: Migrate from printb to print_bits for locally defined bit fields..
Jun 1 2024, 3:59 PM

May 22 2024

gordon committed R9:8110f1bcd339: Update secteam composition. (authored by gordon).
Update secteam composition.
May 22 2024, 9:36 PM

May 7 2024

gordon added inline comments to D45102: Disable ICMP (v4) redirects by default.
May 7 2024, 5:08 PM

Apr 24 2024

gordon committed R9:f5973f2e90e4: Add EN-24:09. (authored by gordon).
Add EN-24:09.
Apr 24 2024, 8:26 PM
gordon committed rG266b3bd3f26d: Unify arc_prune_async() code, fix excessive ARC pruning (authored by mav).
Unify arc_prune_async() code, fix excessive ARC pruning
Apr 24 2024, 8:21 PM
gordon committed rGbe4f1894ef39: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Apr 24 2024, 8:21 PM

Mar 28 2024

gordon committed R9:08fecaeabaa4: Add EN-24:05 through EN-24:08, SA-24:03. (authored by gordon).
Add EN-24:05 through EN-24:08, SA-24:03.
Mar 28 2024, 7:22 AM
gordon committed rG26059a4f2c14: Merge commit f800c1f3b207 from llvm-project (by Arthur Eubanks): (authored by dim).
Merge commit f800c1f3b207 from llvm-project (by Arthur Eubanks):
Mar 28 2024, 7:15 AM
gordon committed rGf07351f90aa3: if_wg: use proper barriers around pkt->p_state (authored by kevans).
if_wg: use proper barriers around pkt->p_state
Mar 28 2024, 7:15 AM
gordon committed rG7a0d63c90932: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Mar 28 2024, 7:15 AM
gordon committed rGd9d90e5e42f6: unbound: Vendor import 1.19.1 (authored by cy).
unbound: Vendor import 1.19.1
Mar 28 2024, 5:08 AM
gordon committed rG8f1f4e60ceb9: if_wg: use proper barriers around pkt->p_state (authored by kevans).
if_wg: use proper barriers around pkt->p_state
Mar 28 2024, 5:08 AM
gordon committed rGf3195cc08ccc: kern: fix panic with disabled ttys (authored by emaste).
kern: fix panic with disabled ttys
Mar 28 2024, 5:08 AM
gordon committed rGf5ac4e174fdd: Add UPDATING entries and bump the branch version. (authored by gordon).
Add UPDATING entries and bump the branch version.
Mar 28 2024, 5:08 AM
gordon committed rGc189b94f8a22: unbound: Vendor import 1.19.1 (authored by cy).
unbound: Vendor import 1.19.1
Mar 28 2024, 5:07 AM
gordon committed rGc48fe39ad139: kerberos5: Mitigate the possibility of using an old libcrypto (authored by cy).
kerberos5: Mitigate the possibility of using an old libcrypto
Mar 28 2024, 5:07 AM
gordon committed rGaaf2c7fdb81a: kerberos: Fix numerous segfaults when using weak crypto (authored by cy).
kerberos: Fix numerous segfaults when using weak crypto
Mar 28 2024, 5:07 AM
Next