[odc] Daily src changes for 2007-07-09

ODC auto at squish.net
Tue Jul 10 07:00:01 BST 2007 

OpenBSD src changes summary for 2007-07-09
==========================================

sbin/growfs                             sbin/ncheck_ffs
sys/arch/sgi/localbus                   sys/dev
sys/dev/ic                              sys/kern
sys/sys                                 usr.bin/file
usr.bin/make                            usr.sbin/tcpdump

== sbin ============================================================== 01/04 ==

  http://www.openbsd.org/cgi-bin/cvsweb/src/sbin

growfs

  ~ Makefile                              

  > remove -Wall (millert@)

  ~ Makefile                              

  > Use -O1 for m68k to work around a gcc optimizer bug (millert@)

  ~ Makefile                              

  > disable specific gcc optimization that triggers the gcc bug (millert@)

ncheck_ffs

  ~ ncheck_ffs.c                          

  > correct a typo in an error message.
  > use realpath(3) to sanitize the path we're going to
  > work with, prevents silly errors when passing ncheck_ffs
  > paths from the shell with a trailing '/' since that
  > doesnt match the entry in fstab.
  > ok deraadt@,krw@ (thib@)

== sys =============================================================== 02/04 ==

  http://www.openbsd.org/cgi-bin/cvsweb/src/sys

arch/sgi/localbus

  ~ macebus.c                             

  > change the behaviour of the LED on the O2 so that it's red in user mode
  > and green when idling.
  > from Joel Sing <joel at ionix.com.au>
  > ok miod@ (jasper@)

dev

  ~ audio.c                               

  > give the user what they expect instead of what we're working with
  > by taking into account expansion we may have done in cases such as
  > playing monoaural media on a device that only plays stereo, like
  > auich(4). (jakemsr@)

  ~ audio.c                               

  > take into account possible expansion and be more careful not to
  > try to go past the end of the buffer.
  > this and the last commit allow ffplay and gnash to work properly
  > on devices that may need to do mono to stereo conversion, like
  > auich(4).
  > problem reported by and much debugging deanna@ (jakemsr@)

dev/ic

  ~ ac97.c                                

  > don't always spew massive debug messages just because AUDIO_DEBUG is
  > defined. (jakemsr@)

kern

  ~ vfs_bio.c                             

  > Do not allow clustering read for filesystems which block size is smaller
  > than the hardware page size, as was the case in the old clustering code.
  > This fixes vnd reads on alpha and sparc64
  > On behalf of pedro@, ok art@ (miod@)

sys

  ~ mbuf.h                                

  > Replace the huge MFREE macro with a simple call to m_free(). On today's
  > computer the resulting code is smaller and faster. Also remove the
  > _MEXTREMOVE macro which was only used by MFREE.
  > OK markus@ long time ago (claudio@)

== usr.bin =========================================================== 03/04 ==

  http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin

file

  ~ file.h                                ~ funcs.c
  ~ magic.c                               

  > Fix possible heap overflow in file(1), aka CVE-2007-1536.
  > When writing data into a buffer in the file_printf() function, the
  > length of the unused portion of the buffer is not correctly tracked,
  > resulting in a buffer overflow when processing certain files.
  > Adapted from FreeBSD's SA-07:04.file fix, with ok and some minor
  > tweaks from canacar@ and ray at . (dim@)

  ~ file.h                                ~ funcs.c
  ~ magic.c                               

  TAGGED OPENBSD_4_1
  > Backport security fix.
  > Original commit by: dim at openbsd.org
  > Original commit message:
  > Fix possible heap overflow in file(1), aka CVE-2007-1536.
  > When writing data into a buffer in the file_printf() function, the
  > length of the unused portion of the buffer is not correctly tracked,
  > resulting in a buffer overflow when processing certain files.
  > Adapted from FreeBSD's SA-07:04.file fix, with ok and some minor
  > tweaks from canacar@ and ray at . (ckuethe@)

  ~ file.h                                ~ funcs.c
  ~ magic.c                               

  TAGGED OPENBSD_4_0
  > Backport security fix.
  > Original commit by: dim at openbsd.org
  > Original commit message:
  > Fix possible heap overflow in file(1), aka CVE-2007-1536.
  > When writing data into a buffer in the file_printf() function, the
  > length of the unused portion of the buffer is not correctly tracked,
  > resulting in a buffer overflow when processing certain files.
  > Adapted from FreeBSD's SA-07:04.file fix, with ok and some minor
  > tweaks from canacar@ and ray at . (ckuethe@)

make

  ~ parsevar.c                            

  > repair, sorry about that (obvious typo, duh) (espie@)

  ~ varname.c                             

  > indent correctly (espie@)

  ~ make.1                                

  > tweaks; (jmc@)

  ~ Makefile                              

  > espie, you have got to be joking (deraadt@)

== usr.sbin ========================================================== 04/04 ==

  http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin

tcpdump

  ~ print-ppp.c                           

  > Handle IPv6 on PPP printer, from Stuart Henderson (canacar@)

===============================================================================

More information about the odc mailing list