upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-09 08:43:19 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
281 commits 30 branches 226 tags 2.4 GiB
Commit graph

13 commits

Author SHA1 Message Date
glebius
e0977fd0da - Use unsigned version of min() when handling arguments of SETFKEY ioctl. 
- Validate that user supplied control message length in sendmsg(2)
  is not negative.

Security:	SA-16:18
Security:	CVE-2016-1886
Security:	SA-16:19
Security:	CVE-2016-1887
Submitted by:	C Turt <cturt hardenedbsd.org>
Approved by:	so
 2016-05-18 06:43:21 +02:00
Franco Fichtner
b8ff7a2767 amdtemp: adds APU2 support 
Taken from: http://www.pcengines.info/forums/?page=post&id=6DA3284E-4973-4EC5-921D-A93AB72123DC
 2016-03-20 08:09:42 +01:00
royger
f768af7dfe MFC r292258: 
hyperv/kvp: wake up the daemon if it's sleeping due to poll()

Submitted by:           Dexuan Cui <decui@microsoft.com>
Sponsored by:		Microsoft OSTC
 2016-02-08 20:52:54 +01:00
royger
14491e08c7 MFC r291156: 
Ignore the inbound checksum flags when doing packet forwarding in netvsc
driver.

Sponsored by:	Microsoft OSTC
PR:		203630

(cherry picked from commit a5f1c95b3c8a3114c0dd550de01326f7c442020a)
 2016-02-02 21:04:39 +01:00
Franco Fichtner
82ad3de7f0 netmap: ring size limit not enough for multi-queue em(4) 
Bravely going where no man has gone before.  :)
 2016-01-28 11:03:21 +01:00
glebius
8d5e66974d o Fix filemon and bmake meta-mode stability issues. [EN-16:01] o Fix invalid TCP checksums with pf(4). [EN-16:02.pf] o Fix YP/NIS client library critical bug. [EN-16:03.yplib] o Fix SCTP ICMPv6 error message vulnerability. [SA-16:01.sctp] o Fix ntp panic threshold bypass vulnerability. [SA-16:02.ntp] o Fix Linux compatibility layer incorrect futex handling. [SA-16:03.linux] o Fix Linux compatibility layer setgroups(2) system call. [SA-16:04.linux] o Fix TCP MD5 signature denial of service. [SA-16:05.tcp] o Fix insecure default bsnmpd.conf permissions. [SA-16:06.bsnmpd] 
Errata:		FreeBSD-EN-16:01.filemon
Errata:		FreeBSD-EN-16:02.pf
Errata:		FreeBSD-EN-16:03.yplib
Security:	FreeBSD-SA-16:01.sctp, CVE-2016-1879
Security:	FreeBSD-SA-16:02.ntp, CVE-2015-5300
Security:	FreeBSD-SA-16:03.linux, CVE-2016-1880
Security:	FreeBSD-SA-16:04.linux, CVE-2016-1881
Security:	FreeBSD-SA-16:05.tcp, CVE-2016-1882
Security:	FreeBSD-SA-16:06.bsnmpd, CVE-2015-5677
Approved by:	so
 2016-01-14 11:21:11 +01:00
Franco Fichtner
453fe71bf8 netmap: mute a spammy netmap message 2015-11-20 11:48:34 +01:00
hselasky
2bc1d40306 Add new USB ID. 
MFC after:	1 month
PR:		202968
 2015-10-22 07:35:43 +02:00
Franco Fichtner
cd6ee62847 src: clean-cut move to 10.2-RELEASE 
Start fresh on master, only apply needed patches on top now.

Upstream commit:	56279fdef34eb28a4655b489b992c651bd8379fc
Taken from:		FreeBSD
 2015-08-14 14:15:00 +02:00
delphij
5aa5ada191 Fix integer overflow in IGMP protocol. [SA-15:04] 
Fix vt(4) crash with improper ioctl parameters. [EN-15:01]

Updated base system OpenSSL to 1.0.1l. [EN-15:02]

Fix freebsd-update libraries update ordering issue. [EN-15:03]

Approved by:	so
 2015-02-25 07:15:48 +01:00
Franco Fichtner
87f480af48 *: upgrade to 10.1 as a bulk commit 
Taken from: freebsd.git@29f4af53a2c8248b634f48923da8eb35f5ed0515
 2015-02-10 19:21:02 +01:00
delphij
8b8644aa81 Fix OpenSSL NULL pointer deference vulnerability. [SA-14:09] 
Security:	FreeBSD-SA-14:09.openssl
Security:	CVE-2014-0198

Fix data corruption with ciss(4). [EN-14:05]

Errata:		FreeBSD-EN-14:05.ciss

Approved by:	so
 2014-11-09 09:32:29 +01:00
Franco Fichtner
402e7dde73 src: initial commit based on FreeBSD-10.0 
Taken from:	https://github.com/freebsd/freebsd.git
Commit id:	d44ce30d3054a38723f89a161c5e003e64d1aaae
 2014-11-09 09:30:14 +01:00