Skip to content
Commits on Jul 9, 2000
  1. correct couple of .Nm.

    itojun committed Jul 9, 2000
  2. update 0.1.11pre

    sumikawa committed Jul 9, 2000
  3. wording on tcp option length field

    itojun committed Jul 9, 2000
  4. * *bsd*/sys/netinet/tcp_input.c: be more cautious about tcp option

    itojun committed Jul 9, 2000
      length field.  drop bogus ones earlier.
      not sure if there is a real threat or not, but it seems that there's
      possibility for overrun/underrun (like non-NOP option with
      optlen > cnt).
  5. be more cautious about tcp option length field. drop bogus ones earlier.

    itojun committed Jul 9, 2000
    not sure if there is a real threat or not, but it seems that there's
    possibility for overrun/underrun (like non-NOP option with optlen > cnt).
  6. use 7/3 snap.

    sumikawa committed Jul 9, 2000
  7. reject empty scopeid like "fe80::%"

    itojun committed Jul 9, 2000
  8. reject empty numeric string more explicitly

    itojun committed Jul 9, 2000
  9. check if *p != \0 on call to strtoul.

    itojun committed Jul 9, 2000
  10. isdigit() is unsafe for non-numeric case. use strtoul().

    itojun committed Jul 9, 2000
    comment from itohy@netbsd.
  11. recover in6_addmulti(::) semantics.

    itojun committed Jul 9, 2000
Commits on Jul 8, 2000
  1. %-format pedant, from openbsd

    itojun committed Jul 8, 2000
  2. * netbsd/pkgsrc/net/bind9: use bind 9.0.0b5

    itojun committed Jul 8, 2000
    * netbsd/pkgsrc/net/{libpcap,tcpdump}: use 7/3 snapshot.
  3. use 7/3 snap.

    itojun committed Jul 8, 2000
  4. 9.0.0b5

    itojun committed Jul 8, 2000
  5. * {netbsd,openbsd}/usr.sbin/inetd: allow square-bracket for the first

    itojun committed Jul 8, 2000
      element on inetd.conf, to disambiguate IPv6 address and colon
      separator.
    * openbsd/usr.sbin/inetd: handle IPv6 address in first element on
      inetd.conf line.
  6. repair previous.

    itojun committed Jul 8, 2000
  7. allow bracket notation on port part.

    itojun committed Jul 8, 2000
  8. allow bracket notation in se_hostaddr.

    itojun committed Jul 8, 2000
    [::1]ftp stream tcp6 nowait root /usr/local/v6/libexec/ftpd ftpd -ll
  9. * netbsd/usr.sbin/inetd: improve error handling on getaddrinfo

    itojun committed Jul 8, 2000
      (determine listening socket address).  hints from enami.
  10. * {bsdi3,openbsd,netbsd}/libexec/ftpd: plug setproctitle issue in

    itojun committed Jul 8, 2000
      CERT Advisory CA-2000-13.  NOTE: bsdi3 uses wu-ftpd.  it may have
      other vulnerabilities left in the code.
  11. plug security hole.

    itojun committed Jul 8, 2000
    CERT Advisory CA-2000-13 Two Input Validation Problems In FTPD
  12. improve error check on listening address.

    itojun committed Jul 8, 2000
    explicitly check if the address family is supported or not
Commits on Jul 7, 2000
  1. * various places: audit use of printf-like functions, including

    itojun committed Jul 7, 2000
      errx?, warnx?, setproctitle, and syslog.  if we pass user-supplied
      variable alone to these functions, they can be hosed by malicious
      %-format string.  from openbsd.
  2. too many %s :-P

    itojun committed Jul 7, 2000
  3. errx?/warnx? audit. from openbsd

    itojun committed Jul 7, 2000
  4. use err.h for warn() prototype. i don't see the problem stated in the

    itojun committed Jul 7, 2000
    comment any longer (backout if i'm wrong).
  5. sync better with netbsd. (NOIPPRIVPORTS)

    itojun committed Jul 7, 2000
Something went wrong with that request. Please try again.