♟ delphij

Return this back to pool, I no longer use this port.

Update arcmsr(4) to 1.40.00.00 in order to add support of

Revise advisory for the actual releng/10.3 revision.

Add the missed Heimdal patch, freebsd-update bits are not affected.

Wordsmithing from gjb@

Add SA-17:05 and EN-17:06.

Fix heimdal KDC-REP service name validation vulnerability [SA-17:05]

MFS r320907: MFC r320906: MFV r320905: Import upstream fix for

MFC r320906: MFV r320905: Import upstream fix for CVE-2017-11103.

MFV r320905: Import upstream fix for CVE-2017-11103.

Import upstream fix for CVE-2017-11103:

MFS r320799: MFC r320665:

- Use strlcat() instead of strncat().

In open_binary_fd: when using buffer size for strl* and snprintf,

In open_binary_fd: when using buffer size for strl* and snprintf,
always use >= instead of > to avoid truncation.

MFS r320586: MFC r320093: Check return value of seteuid() and bail out

MFC r320093: Check return value of seteuid() and bail out if we fail.

MFS r320581: MFC r320494: Fix double free by reverting r300385 and

MFC r320494: Fix double free by reverting r300385 and r300624 which was

Revert r300385 and r300624 which was false positive

Don't bother to set target for SEEK_END.

Use strlcpy() instead of strncpy() and nul-terminating.

Chase malloc() change by removing lg_chunk malloc_conf settings.

MFC r320216: Fix use-after-free introduced in r300388.

MFC r320183: Reduce code duplication in rpc.lockd.

Fix use-after-free introduced in r300388.

In D11288#233844, @cem wrote:

Wouldn't it be easier to just endnetconfig() in both return paths? Avoid a bunch of unused strdup calls too.

Use endnetconfig() instead of previous approach.

Reduce code duplication in rpc.lockd.

Check return value of seteuid() and bail out if we fail.

Thanks for the work! (I thought this was already landed last year :)

Fix build with LibreSSL.

LGTM. Could you please also send this to upstream?

* limit size of buffers to RPC_MAXDATASIZE

MFC r318514-r318515, r318517, r318917

Partial MFC r288030 (rodrigc):

MFC r279663,r279666 (pfg):

MFC r318514-r318515, r318517, r318917

MFC r313695, r313760, r314769, r314863, r314865, r316125

MFC r315272, r315370

Tighten /entropy permissions.

delphij (Xin Li)
User

Projects (8)
View All

User Details

Recent Activity
View All

Sat, Jul 22

Mon, Jul 17

Sat, Jul 15

Fri, Jul 14

Wed, Jul 12

Sat, Jul 8

Fri, Jul 7

Wed, Jul 5

Tue, Jul 4

Mon, Jul 3

Fri, Jun 30

Thu, Jun 29

Wed, Jun 28

Jun 26 2017

Jun 25 2017

Jun 24 2017

Jun 22 2017

Jun 21 2017

Jun 19 2017

Jun 18 2017

Jun 15 2017

Jun 12 2017

Jun 6 2017

Jun 5 2017

Jun 4 2017

Jun 3 2017

Jun 1 2017

May 31 2017

May 27 2017

delphij (Xin Li)User

Projects (8)View All