Month: May 2016

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-16:22.libarchive

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-16:22.libarchive Security Advisory
The FreeBSD Project

Topic: Directory traversal in cpio(1)

Category: contrib
Module: libarchive
Announced: 2016-05-31
Credits: Alexander Cherepanov
Affects: All supported versions of FreeBSD
Corrected: 2016-05-21 09:03:45 UTC (stable/10, 10.3-STABLE)
2016-05-31 16:35:03 UTC (releng/10.3, 10.3-RELEASE-p4)
2016-05-31 16:33:56 UTC (releng/10.2, 10.2-RELEASE-p18)
2016-05-31 16:32:42 UTC (releng/10.1, 10.1-RELEASE-p35)
2016-05-21 09:27:30 UTC (stable/9, 9.3-STABLE)
2016-05-31

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-16:23.libarchive

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-16:23.libarchive Security Advisory
The FreeBSD Project

Topic: Buffer overflow in libarchive(3)

Category: contrib
Module: libarchive
Announced: 2016-05-31
Affects: FreeBSD 9.3
Corrected: 2016-05-21 09:27:30 UTC (stable/9, 9.3-STABLE)
2016-05-31 16:23:56 UTC (releng/9.3, 9.3-RELEASE-p43)
CVE Name: CVE-2013-0211

For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections,

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-16:21.43bsd

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-16:21.43bsd Security Advisory
The FreeBSD Project

Topic: Kernel stack disclosure in 4.3BSD compatibility layer

Category: core
Module: kernel
Announced: 2016-05-31
Credits: CTurt
Affects: All supported versions of FreeBSD.
Corrected: 2016-05-31 16:57:42 UTC (stable/10, 10.3-STABLE)
2016-05-31 16:55:50 UTC (releng/10.3, 10.3-RELEASE-p4)
2016-05-31 16:55:45 UTC (releng/10.2, 10.2-RELEASE-p18)
2016-05-31 16:55:41 UTC (releng/10.1, 10.1-RELEASE-p35)
2016-05-31 16:58:00 UTC (stable/9,

(Read more...)

[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-16:20.linux

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

=============================================================================
FreeBSD-SA-16:20.linux Security Advisory
The FreeBSD Project

Topic: Kernel stack disclosure in Linux compatibility layer

Category: core
Module: linux(4)
Announced: 2016-05-31
Credits: CTurt
Affects: All supported versions of FreeBSD.
Corrected: 2016-05-31 16:57:42 UTC (stable/10, 10.3-STABLE)
2016-05-31 16:55:50 UTC (releng/10.3, 10.3-RELEASE-p4)
2016-05-31 16:55:45 UTC (releng/10.2, 10.2-RELEASE-p18)
2016-05-31 16:55:41 UTC (releng/10.1, 10.1-RELEASE-p35)
2016-05-31 16:58:00 UTC (stable/9,

(Read more...)

pkgsrc 50th release interviews – Joerg Sonnenberger

The pkgsrc team has prepared the 50th release of their package management system, with the 2016Q1 version. It’s infrequent event, as the 100th release will be held after 50 quarters.

The NetBSD team has prepared series of interviews with the authors. We started with Joerg Sonnenberger, a developer well known for his LLVM on NetBSD contribution.

pkgsrc 50th release interviews – Joerg Sonnenberger

The pkgsrc team has prepared the 50th release of their package management system, with the 2016Q1 version. It’s infrequent event, as the 100th release will be held after 50 quarters.

The NetBSD team has prepared series of interviews with the authors. We started with Joerg Sonnenberger, a developer well known for his LLVM on NetBSD contribution.

10G isn’t enough

Sepherosa Ziehau has been working on network performance, including making more network calls asynchronous.  His test case using nginx shows that a single DragonFly machine can now take enough traffic to max out 2 10Gb links.  That’s with 16Kb requests, and 30,000 of them at the same time.

Lazy Reading for 2016/05/29

What are people using for a web framework these days?  I was messing with Fat Free Framework, and there seems to be about a zillion options, for many languages, these days. Reverse Engineering A Mysterious UDP Stream in My Hotel.  (via) Is it worth learning vim? Security through lying. Pre-ASCII ASCII art.  (via) XScreenSaver 5.35. […]

In Other BSDs for 2016/05/28

Fun links, this week. BCHS Stack – BSD, C, Httpd, SQLite.  Fun!  (via) How to chroot www/firefox on NetBSD.  (via) misc@openbsd: ‘NSA addition to ifconfig’.  (via) OpenBSD/loongson on the Lemote Yeeloong 8101B.  (via) Comfort On The Command Line – A primer.  Actually talks about the command line on multiple platforms including BSD, not just “here’s […]

NetBSD 7.0.1 released

The NetBSD Project is pleased to announce NetBSD 7.0.1, the first security/bugfix update of the NetBSD 7.0 release branch. It represents a selected subset of fixes deemed important for security or stability reasons. If you are running an earlier releas…

NetBSD 7.0.1 released

The NetBSD Project is pleased to announce NetBSD 7.0.1, the first security/bugfix update of the NetBSD 7.0 release branch. It represents a selected subset of fixes deemed important for security or stability reasons. If you are running an earlier releas…

W^X now mandatory in OpenBSD

Traditional Unix has allowed memory to be mapped W | X. Everyone now knows that’s a bad practice from a security standpoint, but the software ecosystem hasn’t made much progress in this area. Theo de Raadt has just committed a change to begin blocking W^X violations in OpenBSD.

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2016/05/27 13:45:04

Modified files:
	

(Read more...)

ral(4) may suddenly work

If you have a ral(4) wireless card that didn’t function as expected, it may suddenly work for you now on DragonFly 4.5 due to the large wifi update.  The ral(4) driver covers a lot of hardware, so check the man page for all the commercial names.