aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Add UPDATING entries and bump revision.releng/14.0Gordon Tetlow2024-09-192-2/+13
* libnv: correct the calculation of the structure's sizeMariusz Zaborski2024-09-191-1/+1
* bhyve: improve input validation in pci_xhciPierre Pronchery2024-09-191-5/+73
* pf: rework pf_icmp_state_lookup() failure modeKristof Provost2024-09-192-9/+15
* pf: be less strict about icmp state checking for sloppy state trackingKristof Provost2024-09-191-0/+3
* pf: try to lookup the icmp state based on a correct packet descriptorKristof Provost2024-09-191-2/+2
* pf: improve the ICMPv6 direction checkKristof Provost2024-09-193-37/+85
* pf: invert direction for inner icmp state lookupsKristof Provost2024-09-191-10/+11
* pf tests: ensure we don't confuse different ICMP typesKristof Provost2024-09-192-0/+90
* pf: fix icmp-in-icmp state lookupKristof Provost2024-09-191-14/+17
* Add UPDATING entries and bump revisionEd Maste2024-09-042-1/+23
* umtx: shm: 'ushm_refcnt > 0' => 'ushm_refcnt != 0'Olivier Certner2024-09-041-2/+2
* umtx: shm: Prevent reference counting overflowOlivier Certner2024-09-041-22/+54
* umtx: shm: Fix use-after-free due to multiple drops of the registry referenceOlivier Certner2024-09-041-18/+33
* umtx: shm: Collapse USHMF_REG_LINKED and USHMF_OBJ_LINKED flagsOlivier Certner2024-09-041-9/+5
* openssl: Avoid type errors in EAI-related name check logic.Viktor Dukhovni2024-09-044-25/+131
* bhyve: fix off by one error in pci_xhciPierre Pronchery2024-09-041-2/+2
* ctl: avoid heap info leak in ctl_request_senseEd Maste2024-09-041-8/+2
* ctl: fix Out-Of-Bounds access in ctl_report_supported_opcodesPierre Pronchery2024-09-041-9/+8
* ctl: fix memory disclosure in read/write buffer commandsPierre Pronchery2024-09-041-2/+2
* ctl: fix Use-After-Free in ctl_write_bufferAlan Somers2024-09-042-8/+19
* bhyve: fix Out-Of-Bounds read/write heap in tpm_ppi_mem_handlerPierre Pronchery2024-09-041-2/+2
* libnv: verify that string is null terminatedMariusz Zaborski2024-09-041-0/+4
* libnv: allocate buffer in a safe wayMariusz Zaborski2024-09-042-11/+15
* calendar: don't setlogin(2) in the -a user handlersKyle Evans2024-09-041-1/+1
* Add UPDATING entries and bump the branch versionMark Johnston2024-08-072-1/+18
* ktrace: Fix an inverted privilege checkMark Johnston2024-08-071-1/+1
* pf: allow MLD LR to be sent without stateKristof Provost2024-08-071-1/+8
* pf: split ICMP/ICMPv6 number space in pf_icmp_mapping()Kristof Provost2024-08-071-112/+135
* pf: some ICMP types that also have icmp_id, pointed out by markus@Kristof Provost2024-08-071-3/+3
* pf: stricter state checking for ICMP and ICMPv6 packetsKristof Provost2024-08-072-83/+317
* ifconfig: Fix default netmask calculationMichael Gmelin2024-08-071-4/+4
* sshd: remove blacklist call from grace_alarm_timerEd Maste2024-08-072-3/+1
* nfscl: Scan readdir reply filenames for invalid charactersRick Macklem2024-08-071-27/+110
* Add UPDATING entries and bump the branch version.Philip Paeps2024-07-012-1/+6
* openssh: Fix pre-authentication remote code execution in sshd.Philip Paeps2024-07-012-1/+3
* Add UPDATING entries and bump the branch version.Gordon Tetlow2024-06-192-1/+6
* ldns: Ignore commented-out lines in resolv.conf.Dag-Erling Smørgrav2024-06-183-48/+42
* Add UPDATING entries and bump the branch version.Gordon Tetlow2024-03-282-1/+18
* unbound: Vendor import 1.19.1Cy Schubert2024-03-28185-2604/+11832
* kerberos5: Mitigate the possibility of using an old libcryptoCy Schubert2024-03-281-1/+2
* kerberos: Fix numerous segfaults when using weak cryptoCy Schubert2024-03-2810-2/+109
* Merge commit f800c1f3b207 from llvm-project (by Arthur Eubanks):Dimitry Andric2024-03-281-2/+7
* if_wg: use proper barriers around pkt->p_stateKyle Evans2024-03-281-6/+4
* kern: fix panic with disabled ttysEd Maste2024-03-281-3/+4
* rc.conf: correct $ntp_leapfile_sourcesPhilip Paeps2024-02-141-2/+2
* periodic/daily/480.leapfile-ntpd: only attempt to refresh leap-seconds.listXin LI2024-02-141-2/+2
* Add UPDATING entries and bump the branch version.Gordon Tetlow2024-02-142-1/+21
* jail: Fix information leak.Pawel Jakub Dawidek2024-02-141-4/+22
* bhyveload: use a dirfd to support -hKyle Evans2024-02-141-27/+57