<div dir="ltr"><div>Very nice !<br></div>Thank you for your valuable work !</div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, May 4, 2015 at 3:55 PM, Jon Tibble <span dir="ltr"><<a href="mailto:meths@btinternet.com" target="_blank">meths@btinternet.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I've just pushed a collection of illumos-gate CVE fixes for a9.<br>
This covers:<br>
- 5378 CVE-2014-3158 ppp: integer overflow in option parsing<br>
- 5480 CVE-2012-3165 mailx(1) buffer overflow vulnerability<br>
- 5481 CVE-2012-1750 mailx(1) tilde expansion vulnerability<br>
- 5853 pfexec_call() error handling could be improved<br>
5854 pfexecd should initialize pfexec response buffers<br>
(Not sure what CVE this actually was assigned.)<br>
<br>
I've also pushed the NVIDIA driver update to 304.125 and the missing pieces of the Delphix vmxnet3s driver patchset.<br>
<br>
The new packages are:<br>
SUNWcs@0.5.11,5.11-0.151.1.9:20150504T114725Z<br>
system/network/ppp@0.5.11,5.11-0.151.1.9:20150504T120317Z<br>
consolidation/nvidia/nvidia-incorporation@0.5.11,5.11-0.151.1.9:20150504T113748Z<br>
driver/graphics/nvidia@0.304.125,5.11-0.151.1.9:20150504T113958Z<br>
driver/network/vmxnet3s@0.5.11,5.11-0.151.1.9:20150504T114139Z<br>
<br>
For those interested in an up to date OI branded illumos-gate, I've finished getting the OI patches done so anyone wishing to work with that can grab it here: <a href="https://github.com/OpenIndiana/illumos-gate" target="_blank">https://github.com/OpenIndiana/illumos-gate</a><br>
<br>
That should build fine with GCC on hipster. If you build it with Studio on a9 you'll get a warning about clog (<a href="https://www.illumos.org/issues/5353" target="_blank">https://www.illumos.org/issues/5353</a>) and warnings about pointers that can be fixed with <a href="https://paste.ec/paste/sDXMLQXR#DnPbnxkm9tFNmX0WxH1rWdV6CjIpGRmcKwfP2HOCgFE" target="_blank">https://paste.ec/paste/sDXMLQXR#DnPbnxkm9tFNmX0WxH1rWdV6CjIpGRmcKwfP2HOCgFE</a><br>
<br>
I've deliberately left out any broadcom patches that we had as there seems to be a mishmash of patches around from various sources and it's better for everyone if people look and work against upstream illumos-gate.<br>
<br>
Regards,<br>
Jon<br>
<br>
_______________________________________________<br>
oi-dev mailing list<br>
<a href="mailto:oi-dev@openindiana.org" target="_blank">oi-dev@openindiana.org</a><br>
<a href="http://openindiana.org/mailman/listinfo/oi-dev" target="_blank">http://openindiana.org/mailman/listinfo/oi-dev</a><br>
</blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature"><div dir="ltr"><font style="font-family:courier new,monospace" size="1">-------------------------------------------------------------------------------<br>LARCHER Aurélien | KTH, School of Computer Science and Communication<br>
Work: <a value="+4687907142">+46 (0) 8 790 71 42</a> | Lindstedtsvägen 5, Plan <font size="1">4<font size="1">,</font></font> 100 44 Stockholm, SWEDEN<br>-------------------------------------------------------------------------------<br></font></div></div>
</div>