[odc] Daily src changes for 2007-08-08
ODC
auto at squish.net
Thu Aug 9 07:00:02 BST 2007
OpenBSD src changes summary for 2007-08-08
==========================================
distrib/notes distrib/sets
etc/root/root.mail lib/libc
libexec/ld.so share/man
sys/arch/amd64/pci sys/dev
usr.sbin/httpd
== distrib =========================================================== 01/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/distrib
notes
~ sparc64/hardware
> Update. (kettenis@)
~ hppa/hardware
> Update. (kettenis@)
sets
~ lists/base/md.landisk
> sync (deraadt@)
== etc =============================================================== 02/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/etc
root/root.mail
~ root/root.mail
> update emacs pkgname
> ok pval (steven@)
== lib =============================================================== 03/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/lib
libc
~ db/recno/rec_get.c ~ db/recno/rec_put.c
> realloc can handle NULL values. From Charles Longeau.
> OK jaredy. (ray@)
~ stdio/fgets.3 ~ string/strcspn.3
> Show how to use strcspn(3) to trim newlines.
> OK jmc and millert. (ray@)
~ stdlib/malloc.3
> Clarify the example about avoiding overflow. OK ray@ deraadt@ (millert@)
~ db/btree/bt_overflow.c ~ db/btree/bt_utils.c
> Let realloc handle NULL. Initial diff from Charles Longeau.
> OK millert and jaredy. (ray@)
== libexec =========================================================== 04/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/libexec
ld.so
~ Makefile
> on NOPIC architectures, do not build and install ld.so. this is in
> particular for landisk (sh) where ld.so does not yet 100% work, but
> was still being installed. libtool cares. modified from matthieu
> patch; ok drahn (deraadt@)
== share ============================================================= 05/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/share
man
~ man4/audio.4
> revert the change in rev 1.60 of audio.c and the corresponding
> documentation change
> the audio layer is still too "imperfect" for this change
> fixes problems reported aanriot, matthieu and dtucker
> requested by deraadt (jakemsr@)
== sys =============================================================== 06/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/sys
arch/amd64/pci
~ pci_machdep.c
> Prevent a potential null-pointer dereference.
> ok krw@, deraadt@ (kettenis@)
dev
~ audio.c
> revert the change in rev 1.60 of audio.c and the corresponding
> documentation change
> the audio layer is still too "imperfect" for this change
> fixes problems reported aanriot, matthieu and dtucker
> requested by deraadt (jakemsr@)
== usr.sbin ========================================================== 07/07 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin
httpd
~ src/modules/standard/mod_status.c
> fix CVE-2006-5752
> A flaw was found in the mod_status module. On sites where the
> server-status page is publicly accessible and ExtendedStatus is enabled
> this could lead to a cross-site scripting attack. Note that the
> server-status page is not enabled by default and it is best practice to
> not make this publicly available.
> ok miod@, henning@ (martynas@)
===============================================================================
More information about the odc
mailing list