User Details
User Details
- User Since
- Nov 2 2014, 4:37 PM (277 w, 13 h)
Tue, Jan 28
Tue, Jan 28
Add EN-20:01, EN-20:01, and SA-20:01 through SA-20:03.
Add UPDATING entries and bump version.
gordon committed rS357219: Fix kernel stack data disclosure.
Fix kernel stack data disclosure
Fix missing IPsec anti-replay window check
gordon committed rS357217: Fix libfetch buffer overflow.
Fix libfetch buffer overflow
Fix nmount invalid pointer dereference
Fix imprecise ordering of SSP canary initialization
gordon committed rS357212: Fix urldecode buffer overrun..
Fix urldecode buffer overrun.
Jan 2 2020
Jan 2 2020
gordon added a comment to D22368: Improve sequence number overflow detection in AH protocol.
I don't think secteam is the right reviewer for this change. Has this been reviewed by folks on the freebsd-net mailing list?
gordon added a comment to D22367: Implement anti-replay algorithm with ESN support.
I don't think secteam is the right reviewer for this change. Has this been reviewed by folks on the freebsd-net mailing list?
Dec 24 2019
Dec 24 2019
gordon added inline comments to D22512: random(4): Simplify RANDOM_LOADABLE.
Nov 21 2019
Nov 21 2019
Nov 12 2019
Nov 12 2019
Add the advisories to go with the updates.
gordon committed rD53591: Add EN-19:19, SA-19:25, SA-19:26..
Add EN-19:19, SA-19:25, SA-19:26.
Add UPDATING entries and bump version numbers.
Fix Machine Check Exception on Page Size Change.
Fix UEFI Loader Memory Fragmentation.
Oct 23 2019
Oct 23 2019
gordon committed rD53502: Add FreeBSD-EN-19:18.tzdata..
Add FreeBSD-EN-19:18.tzdata.
Oct 18 2019
Oct 18 2019
Oct 1 2019
Oct 1 2019
Add older releases that are missing.
gordon committed rS352934: Set the EOL date to 2020-02-29..
Set the EOL date to 2020-02-29.
gordon committed rS352933: Add 12.0-RELEASE and 12.1-BETA2..
Add 12.0-RELEASE and 12.1-BETA2.
Sep 21 2019
Sep 21 2019
gordon committed rS352569: Add metadata for 12.1-BETA1..
Add metadata for 12.1-BETA1.
Aug 22 2019
Aug 22 2019
Add a workaround for the midi issue.
Aug 20 2019
Aug 20 2019
Add EN-19:16, EN-19:17, and SA-19:22 to SA-19:24.
That's EN-19:17.ipfw. It's not an SA.
Bump version information and add UPDATING entries.
Fix reference count overflow in mqueuefs.
Fix kernel memory disclosure from /dev/midistat.
Fix IPv6 remote denial of service.
Fix ipfw(8) jail keyword prior to jail startup.
Add bhyve instruction emulation improvements (opcode 03H and F7H).
Aug 6 2019
Aug 6 2019
Add EN-19:14, EN-19:15, and SA-19:18 to SA-19:21.
Bump version information and add UPDATING entries.
Fix insufficient validation of guest-supplied data (e1000 device).
Fix insufficient message length validation in bsnmp library.
Fix ICMPv6 / MLDv2 out-of-bounds memory access.
Fix multiple vulnerabilities in bzip2.
Fix incorrect exception handling.
Fix incorrect locking in epoch(9).
Jul 24 2019
Jul 24 2019
Add EN-19:13 and SA-19:12 to SA-19:17.
Bump version information and update UPDATING.
Fix file descriptor reference count leak.
Fix byhve out-of-bounds read in XHCI device.
Fix reference count overflow in mqueuefs.
Fix kernel memory disclosure in freebsd32_ioctl.
Fix multiple telnet client vulnerabilities.
Fix panic from Intel CPU vulnerability mitigation.
Jul 3 2019
Jul 3 2019
Add EN-19:12 and SA-19:09 to SA-19:11
Update UPDATING and bump newvers.sh
Fix privilege escalation in cd(4) driver.
Fix kernel stack disclosure in UFS/FFS.
gordon committed rS349621: Fix iconv buffer overflow..
Fix iconv buffer overflow.
Jul 2 2019
Jul 2 2019
Jun 29 2019
Jun 29 2019
Restart local_unbound service after the future build, if it is running.
Jun 21 2019
Jun 21 2019
gordon committed rS349274: Add 11.3-RC2 configuration..
Add 11.3-RC2 configuration.
Jun 19 2019
Jun 19 2019
Add UPDATING entries for today's release. Bump patch version.
Add ability to limit split map entries to prevent resource
Fix incorrect locking in networking stack.
Jun 18 2019
Jun 18 2019
Add the ability to switch the uarch flag to keep 12.0 from breaking.
Jun 17 2019
Jun 17 2019
D20392: random(4): Add regression tests for uint128 implementation, Chacha CTR is now accepted and ready to land.
This looks straightforward. Approved.
Jun 14 2019
Jun 14 2019
Jun 7 2019
Jun 7 2019
May 31 2019
May 31 2019
May 25 2019
May 25 2019
Switch logic in indexfiles to always remove the uarch flag.
Add limit for XZ_THREADS to the buildworld invocation.
Cleanup: Update EOL for 11.0-RELEASE to reflect reality.
gordon committed rS348264: Only fetch the iso (and hence overwrite) if the file isn't already there..
Only fetch the iso (and hence overwrite) if the file isn't already there.
Fix for newer versions of openssl.
May 15 2019
May 15 2019
Republish the SA-19:07.mds advisory due to 12.0-RELEASE i386 panic.
Bump patch revision for updated mds patches.
Correct a few small details in advisories.
gordon committed rD53029: Update version of MDS advisory.
Update version of MDS advisory
May 14 2019
May 14 2019
gordon committed rD53024: Done with the large patches..
Done with the large patches.
Add SA-19:03 to SA-19:07 and EN-19:08 to EN-19:10.
I need to commit some large patches.
Bump newvers.sh and add UPDATING block.
Mitigations for Microarchitectural Data Sampling.
Mitigations for Microarchitectural Data Sampling.
Fix ICMP/ICMP6 packet filter bypass in pf.
Fix IPv6 fragment reassembly panic in pf
Update ntpd to 4.2.8p13 to fix authenticated denial of service.
Update ntpd to 4.2.8p13 to fix authenticated denial of service.
Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities.
Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities.
Fix insufficient filename validation in scp client
Fix partially matching relative paths in xinstall.
Mar 21 2019
Mar 21 2019
gordon requested changes to D19620: Add an option to use TPM as entropy source.
gordon added a comment to D19620: Add an option to use TPM as entropy source.
Strong agree on separating any whitespace commits from functional commits. This is especially important for security sensitive content.
Mar 9 2019
Mar 9 2019
Correct wording around '-' masks.
Mar 6 2019
Mar 6 2019