src

Clone Tools
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
security updates for bhyve.

document ftpd issue

A ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.

A ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.

A number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped.

- From kernel mode a malicious guest can write to arbitrary host memory (with

some constraints), affording the guest full control of the host.

AMD and Intel CPUs support hardware virtualization using specialized data structures that control various aspects of guest operation. These are the Virtual Machine Control Structure (VMCS) on Intel CPUs, and the Virtual Machine Control Block (VMCB) on AMD CPUs. Insufficient access controls allow root users, including those running in a jail, to change these data structures.

A programming error in the ure(4) device driver caused some Realtek USB Ethernet interfaces to incorrectly report packets with more than 2048 bytes in a single USB transfer as having a length of only 2048 bytes.

An adversary can exploit this to cause the driver to misinterpret part of the

payload of a large packet as a separate packet, and thereby inject packets

across security boundaries such as VLANs.

teach mport about current

mandoc seems to crash right now when running as makewhatis. Go to legacy product for now.

fix text

remove old files.

disable tests by default for now.

fix mtree bug

Merge branch 'master' of ssh://github.com/midnightbsd/src

fix a symbol regression

add depend files.

    • -0
    • +11
    /etc/Makefile.depend
    • -0
    • +11
    /etc/defaults/Makefile.depend
    • -0
    • +11
    /etc/newsyslog.conf.d/Makefile.depend
Merge branch 'master' of ssh://github.com/midnightbsd/src

update test dirs

fix a typo

fix typos

    • -0
    • +14
    /etc/autofs/include_nis
    • -0
    • +180
    /etc/autofs/include_nis_nullfs
fix makefile

add plumbing for midnightbsd-update.

    • -0
    • +72
    /etc/midnightbsd-update.conf
    • -0
    • +231
    /share/man/man5/midnightbsd-update.conf.5
    • -6
    • +6
    /tools/build/mk/OptionalObsoleteFiles.inc
    • -0
    • +2
    /tools/build/options/WITHOUT_MIDNIGHTBSD_UPDATE
    • -0
    • +4
    /usr.sbin/midnightbsd-update/Makefile
    • -0
    • +10
    /usr.sbin/midnightbsd-update/Makefile.depend
update optional files.

    • -284
    • +4398
    /tools/build/mk/OptionalObsoleteFiles.inc
ignore jails for id check

blacklistd integration

update some periodic scripts

    • -0
    • +33
    /etc/periodic/daily/410.status-mfi
    • -39
    • +0
    /etc/periodic/daily/430.status-rwho
    • -0
    • +38
    /etc/periodic/daily/430.status-uptime
fix dialy periodic

fix an issue

refresh release scripts

    • -14
    • +63
    /release/scripts/make-manifest.sh
    • -0
    • +80
    /release/scripts/mtree-to-plist.awk
remove extra mtree

update newsyslog