aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Fix multiple vulnerabilities of ntp.releng/10.1Xin LI2016-12-22184-3780/+7378
* Merge r309688: address regressions in SA-16:37.libc.Gleb Smirnoff2016-12-073-7/+10
* Fix possible login(1) argument injection in telnetd(8). [SA-16:36]Gleb Smirnoff2016-12-065-23/+55
* Update tzdata to 2016i.Gleb Smirnoff2016-12-0526-2205/+9761
* Merge r307359 from stable/10:Gleb Smirnoff2016-12-052-33/+11
* Fix OpenSSL remote DoS vulnerability. [SA-16:35]Xin LI2016-11-027-1/+40
* Revised SA-16:15. The initial patch didn't cover all possible overflowsGleb Smirnoff2016-10-253-2/+9
* Fix bspatch heap overflow vulnerability. [SA-16:29]Xin LI2016-10-1014-204/+953
* Apply upstream revision 3612ff6fcec0e3d1f2a598135fe12177c0419582:Xin LI2016-09-263-4/+7
* Fix multiple OpenSSL vulnerabilitites.Xin LI2016-09-2318-100/+231
* Fix bspatch heap overflow vulnerability. [SA-16:25]Xin LI2016-07-254-2/+14
* Fix multiple ntp vulnerabilities.Xin LI2016-06-04161-3086/+4306
* Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]Gleb Smirnoff2016-05-315-1/+13
* Merge r300361 by mm@:Gleb Smirnoff2016-05-316-4/+44
* - Use unsigned version of min() when handling arguments of SETFKEY ioctl.Gleb Smirnoff2016-05-174-2/+12
* Fix multiple OpenSSL vulnerabilitites. [SA-16:17]Xin LI2016-05-0410-14/+26
* Fix ntp multiple vulnerabilities.Xin LI2016-04-29187-1243/+4544
* o Fix OpenSSH xauth(1) command injection. [SA-16:14]Gleb Smirnoff2016-03-165-6/+51
* Fix multiple OpenSSL vulnerabilities.Xin LI2016-03-031440-269511/+276180
* Fix OpenSSL SSLv2 ciphersuite downgrade vulnerability.Xin LI2016-01-303-4/+19
* Fix multiple vulnerabilities of ntp. [SA-16:09]Xin LI2016-01-27205-3503/+6701
* Fix OpenSSH client information leak.Gleb Smirnoff2016-01-143-4/+7
* o Fix invalid TCP checksums with pf(4). [EN-16:02.pf]Gleb Smirnoff2016-01-14298-2154/+5270
* Fix OpenSSL multiple vulnerabilities.Xin LI2015-12-056-18/+15
* o Fix regressions related to SA-15:25 upgrade of NTP. [1]Gleb Smirnoff2015-11-045-14/+21
* Upgrade NTP to 4.2.8p4.Gleb Smirnoff2015-10-261828-163290/+728998
* Fix a regression with SA-15:24 patch that prevented NIS fromXin LI2015-10-023-5/+11
* The Sun RPC framework uses a netbuf structure to represent theXin LI2015-09-293-6/+24
* Implement pubkey support for pkg(7) bootstrap. [EN-15:18]Xin LI2015-09-165-32/+183
* Fix local privilege escalation in IRET handler. [SA-15:21]Xin LI2015-08-2511-15/+46
* Fix patchlevel in UPDATING.Xin LI2015-08-181-1/+1
* Fix multiple integer overflows in expat.Xin LI2015-08-183-3/+27
* Fix patch(1) shell injection vulnerability via ed(1). [SA-15:18]Xin LI2015-08-055-5/+31
* Correct patchlevel.Xin LI2015-07-281-1/+1
* Fix patch(1) shell injection vulnerability. [SA-15:14]Xin LI2015-07-288-101/+135
* Fix resource exhaustion due to sessions stuck in LAST_ACK state.Xin LI2015-07-213-3/+15
* [EN-15:08] Revised: Improvements to sendmail TLS/DH interoperability.Xin LI2015-06-306-40/+42
* Raise the default for sendmail client connections to 1024-bit DHXin LI2015-06-183-4/+7
* Fix OpenSSL multiple vulnerabilities.Xin LI2015-06-1239-361/+619
* src/UPDATING in releng/10.1 should reflect the right patchlevel.Xin LI2015-06-101-1/+1
* Update base system file(1) to 5.22 to address multiple denial ofXin LI2015-06-0972-1032/+2979
* Fix bug with freebsd-update(8) that does not ensure the previousXin LI2015-05-137-50/+150
* Improve patch for SA-15:04.igmp to solve a potential buffer overflow.Xin LI2015-04-077-60/+127
* Fix issues with original SA-15:06.openssl commit:Xin LI2015-03-205-16/+15
* Fix multiple OpenSSL vulnerabilities.Xin LI2015-03-198-42/+181
* Fix multiple OpenSSL vulnerabilities.Xin LI2015-03-192-1/+4
* Fix integer overflow in IGMP protocol. [SA-15:04]Xin LI2015-02-25436-7353/+8746
* Fix SCTP SCTP_SS_VALUE kernel memory corruption and disclosure vulnerabilityXin LI2015-01-274-18/+56
* Fix multiple vulnerabilities in OpenSSL. [SA-15:01]Xin LI2015-01-1428-612/+409
* [SA-14:31] Fix multiple vulnerabilities in NTP suite.Dag-Erling Smørgrav2014-12-238-11/+46