aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Fix multiple vulnerabilities of ntp.releng/9.3Xin LI2016-12-22185-3782/+7380
* Merge r309688: address regressions in SA-16:37.libc.Gleb Smirnoff2016-12-073-7/+10
* Fix possible login(1) argument injection in telnetd(8). [SA-16:36]Gleb Smirnoff2016-12-064-21/+49
* Update tzdata to 2016i.Gleb Smirnoff2016-12-0526-2147/+9742
* Merge r307360 from stable/9:Gleb Smirnoff2016-12-052-33/+11
* Fix BIND remote Denial of Service vulnerability. [SA-16:34]Xin LI2016-11-028-23/+90
* Revised SA-16:15. The initial patch didn't cover all possible overflowsGleb Smirnoff2016-10-253-2/+9
* Fix BIND remote Denial of Service vulnerability. [SA-16:28]Xin LI2016-10-105-91/+206
* Apply upstream revision 3612ff6fcec0e3d1f2a598135fe12177c0419582:Xin LI2016-09-263-4/+7
* Fix multiple OpenSSL vulnerabilitites.Xin LI2016-09-2317-105/+241
* Fix bspatch heap overflow vulnerability. [SA-16:25]Xin LI2016-07-254-2/+14
* Fix multiple ntp vulnerabilities.Xin LI2016-06-04161-3086/+4306
* Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]Gleb Smirnoff2016-05-315-1/+15
* Merge r300363 by mm@:Gleb Smirnoff2016-05-316-1/+37
* - Use unsigned version of min() when handling arguments of SETFKEY ioctl.Gleb Smirnoff2016-05-173-2/+6
* Fix multiple OpenSSL vulnerabilitites. [SA-16:17]Xin LI2016-05-049-14/+23
* Fix ntp multiple vulnerabilities.Xin LI2016-04-29187-1243/+4544
* o Fix OpenSSH xauth(1) command injection. [SA-16:14]Gleb Smirnoff2016-03-164-5/+39
* Fix multiple vulnerabilities of BIND. [SA-16:13]Xin LI2016-03-108-227/+231
* Fix multiple OpenSSL vulnerabilities.Xin LI2016-03-071280-237390/+239002
* Fix OpenSSL SSLv2 ciphersuite downgrade vulnerability.Xin LI2016-01-303-4/+19
* Fix BIND remote denial of service vulnerability. [SA-16:08]Xin LI2016-01-27206-3505/+6706
* Fix OpenSSH client information leak.Gleb Smirnoff2016-01-143-4/+7
* o Fix invalid TCP checksums with pf(4). [EN-16:02.pf]Gleb Smirnoff2016-01-14299-2154/+5268
* Fix BIND remote denial of service vulnerability. [SA-15:27]Xin LI2015-12-166-8/+65
* Fix OpenSSL multiple vulnerabilities.Xin LI2015-12-053-3/+10
* o Fix regressions related to SA-15:25 upgrade of NTP. [1]Gleb Smirnoff2015-11-047-18/+28
* Upgrade NTP to 4.2.8p4.Gleb Smirnoff2015-10-261831-163280/+729073
* Fix a regression with SA-15:24 patch that prevented NIS fromXin LI2015-10-023-5/+11
* The Sun RPC framework uses a netbuf structure to represent theXin LI2015-09-293-6/+24
* Implement pubkey support for pkg(7) bootstrap. [EN-15:18]Xin LI2015-09-165-43/+186
* Fix remote denial of service vulnerability when parsing malformedXin LI2015-09-0210-60/+92
* Fix local privilege escalation in IRET handler. [SA-15:21]Xin LI2015-08-259-13/+41
* Fix multiple integer overflows in expat.Xin LI2015-08-183-3/+27
* Fix routed remote denial of service vulnerability. [SA-15:19]Xin LI2015-08-053-1/+11
* Fix resource exhaustion in TCP reassembly. [SA-15:15]Xin LI2015-07-288-61/+72
* Fix resource exhaustion due to sessions stuck in LAST_ACK state.Xin LI2015-07-213-3/+15
* Fix BIND resolver remote denial of service when validating.Xin LI2015-07-073-4/+5
* [EN-15:08] Revised: Improvements to sendmail TLS/DH interoperability.Xin LI2015-06-305-11/+19
* Raise the default for sendmail client connections to 1024-bit DHXin LI2015-06-183-4/+7
* Fix OpenSSL multiple vulnerabilities.Xin LI2015-06-1220-87/+271
* Update base system file(1) to 5.22 to address multiple denial ofXin LI2015-06-09357-9965/+34748
* Fix bug with freebsd-update(8) that does not ensure the previousXin LI2015-05-134-9/+52
* Improve patch for SA-15:04.igmp to solve a potential buffer overflow.Xin LI2015-04-076-60/+121
* Fix issues with original SA-15:06.openssl commit:Xin LI2015-03-205-17/+15
* Fix multiple OpenSSL vulnerabilities.Xin LI2015-03-198-26/+165
* Fix multiple OpenSSL vulnerabilities.Xin LI2015-03-192-1/+4
* Fix integer overflow in IGMP protocol. [SA-15:04]Xin LI2015-02-25440-8226/+9084
* Fix SCTP SCTP_SS_VALUE kernel memory corruption and disclosure vulnerabilityXin LI2015-01-274-18/+56
* Fix multiple vulnerabilities in OpenSSL. [SA-15:01]Xin LI2015-01-1427-375/+529