OpenBSD/src w91V28Husr.sbin/smtpd enqueue.c

   reject CR and LF in argv-derived fields before starting the SMTP dialogue

   enqueue interpolates the sender, recipients and DSN options straight into
   MAIL FROM / RCPT TO command lines.  an embedded CR or LF split the command
   boundary and injected additional SMTP commands over the local session, so
   refuse any such field up front.

   from Andrew Griffiths (fixed by me), ok op@
VersionDeltaFile
1.127+21-1usr.sbin/smtpd/enqueue.c
+21-11 files

OpenBSD/src ZfAqP4husr.sbin/smtpd mta.c

   free the copied envelope on the smarthost lookup failure path

   mta_on_smarthost() frees the malloc'd envelope on success, but the
   smarthost == NULL branch tempfailed the message and returned without
   freeing it, leaking a struct envelope per failed lookup.

   from Andrew Griffiths, ok op@
VersionDeltaFile
1.249+2-1usr.sbin/smtpd/mta.c
+2-11 files

OpenBSD/src CZZ66B2usr.sbin/smtpd mda.c

   free mda_subaddress in mda_envelope_free()

   mda_envelope() duplicates the subaddress with xstrdup() when present but
   mda_envelope_free() never released it, leaking one bounded string per
   subaddressed local delivery.

   from Andrew Griffiths, ok op@
VersionDeltaFile
1.148+2-1usr.sbin/smtpd/mda.c
+2-11 files

OpenBSD/src fg8haRjusr.sbin/smtpd compress_gzip.c

   use inflateEnd() to tear down the inflate stream in uncompress_gzip_chunk()

   the decompression path sets up the stream with inflateInit2() but the
   cleanup block called deflateEnd(), mismatching the zlib inflate/deflate
   APIs and leaking the stream state on every gzip queue read.

   from Andrew Griffiths, ok op@
VersionDeltaFile
1.14+2-2usr.sbin/smtpd/compress_gzip.c
+2-21 files

OpenBSD/src QkDm6zrusr.sbin/smtpd dns.c spfwalk.c

   stop parsing DNS answers once unpack_rr() reports failure

   the MX, MX-preference and spf walkers looped on the attacker-controlled
   ancount calling unpack_rr() without checking its return, processing stale
   or uninitialized rr contents on malformed or truncated replies.  break out
   of the loop as soon as unpack_rr() fails.

   from Andrew Griffiths, ok op@
VersionDeltaFile
1.93+5-3usr.sbin/smtpd/dns.c
1.21+2-2usr.sbin/smtpd/spfwalk.c
+7-52 files

OpenBSD/ports aNU5G6Hgames/nethack/5.0 Makefile, games/nethack/5.0/files x-config

   Enable X11 flavour for nethack/5.0.
   From espie
VersionDeltaFile
1.2+12-2games/nethack/5.0/Makefile
1.1+11-0games/nethack/5.0/files/x-config
1.2+9-0games/nethack/5.0/patches/patch-sys_unix_Makefile_src
1.1+5-0games/nethack/5.0/pkg/PFRAG.no-no_x11
1.2+1-0games/nethack/5.0/pkg/PLIST
+38-25 files

OpenBSD/src kfkkzkUsys/kern sysv_msg.c

   sysv: Recheck message queue limit after malloc

   que_create() allocates with M_WAIT and may sleep after sys_msgget()
   checks num_ques against msgmni. The kernel lock is released while the
   thread sleeps, allowing concurrent creators to pass the same check and
   exceed the queue limit.

   OK: mvs@
VersionDeltaFile
1.51+2-2sys/kern/sysv_msg.c
+2-21 files

OpenBSD/src jOTQCxWsys/kern sysv_msg.c

   sysv: Use zero-based message queue indices

   que_ix starts at one, while KERN_SYSVIPC_MSG_INFO allocates msgmni
   entries and uses que_ix directly as an array index. The last permitted
   queue therefore makes sysctl_sysvmsg() copy one struct msqid_ds past the
   allocation, which KASAN detects.

   OK: mvs@
VersionDeltaFile
1.50+2-2sys/kern/sysv_msg.c
+2-21 files

OpenBSD/src YJxKMzdsys/crypto cryptosoft.c

   IPComp decompression must not overflow mbuf cluster.

   Check after decompressing an IPComp packet, that the content fits
   into a mbuf cluster.  m_copyback() assumes that it can allocate a
   single mbuf cluster to enlarge the mbuf chain.  That means the
   decompressed data must not exceed MAXMCLBYTES.  Prevent panic:
   m_clget: request for 67948 byte cluster.

   reported by Homura Akemi, SecBuddyF, Tencent KeenLab; OK mvs@
VersionDeltaFile
1.92+7-1sys/crypto/cryptosoft.c
+7-11 files

OpenBSD/src DNpDofusys/netinet ip_ah.c

   IPsec AH must contain replay counter.

   Before reading the replay counter from packet header in ah_input(),
   make sure that the mbuf is long enough.  Prevents panic: m_copydata:
   null mbuf.

   reported by Homura Akemi, SecBuddyF, Tencent KeenLab; OK mvs@
VersionDeltaFile
1.180+5-1sys/netinet/ip_ah.c
+5-11 files

OpenBSD/ports CNnbSbCdevel/yyjson Makefile distinfo

   Update yyjson to 0.12.0.
VersionDeltaFile
1.3+2-3devel/yyjson/Makefile
1.2+2-2devel/yyjson/distinfo
+4-52 files

OpenBSD/src 1IQnLfuusr.bin/tmux job.c cmd.c

   Use _exit in child after fork, from Yayo Razo in GitHub issue 5376.
VersionDeltaFile
1.75+9-9usr.bin/tmux/job.c
1.186+8-3usr.bin/tmux/cmd.c
+17-122 files

OpenBSD/src aVT0Gdzusr.bin/tmux xmalloc.c

   Add missing calloc check and use fatal. Prompted by a similar change
   from Yayo Razo.
VersionDeltaFile
1.15+11-20usr.bin/tmux/xmalloc.c
+11-201 files

OpenBSD/ports U5TcdeLwayland/mango Makefile distinfo, wayland/mango/patches patch-src_dispatch_bind_define_h patch-src_mango_c

   wayland/mango: Update to 0.15.2
VersionDeltaFile
1.10+6-3wayland/mango/Makefile
1.7+2-2wayland/mango/patches/patch-src_dispatch_bind_define_h
1.9+2-2wayland/mango/distinfo
1.3+1-1wayland/mango/patches/patch-src_mango_c
+11-84 files

OpenBSD/ports bT7Kgrawayland/scenefx Makefile distinfo, wayland/scenefx/patches patch-include_scenefx_types_fx_clipped_region_h patch-meson_build

   wayland/scenefx: Update to 0.5

   feedback and tests from yaydn (at) protonmail, hints from tb@ and naddy@
   Thanks!
VersionDeltaFile
1.1+14-0wayland/scenefx/patches/patch-include_scenefx_types_fx_clipped_region_h
1.3+7-6wayland/scenefx/Makefile
1.2+3-3wayland/scenefx/patches/patch-meson_build
1.2+2-2wayland/scenefx/distinfo
1.2+2-2wayland/scenefx/pkg/PLIST
+28-135 files

OpenBSD/ports 3YL3DQQgames/lzdoom distinfo Makefile

   update to lzdoom 4.14.4, a bugfix release. Release notes: https://github.com/drfrag666/lzdoom/releases/tag/l4.14.4
VersionDeltaFile
1.2+2-2games/lzdoom/distinfo
1.2+1-1games/lzdoom/Makefile
+3-32 files

OpenBSD/xenocara 8FZ4YIo. MODULES 3RDPARTY

   update
VersionDeltaFile
1.566+20-20MODULES
1.470+2-23RDPARTY
+22-222 files

OpenBSD/xenocara ZyVUAQMutil/gccmakedep config.sub config.guess

   Update to gccmakedep 1.0.5
VersionDeltaFile
1.3+1,471-1,293util/gccmakedep/config.sub
1.3+1,028-753util/gccmakedep/config.guess
1.3+144-259util/gccmakedep/missing
1.9+148-126util/gccmakedep/aclocal.m4
1.9+68-146util/gccmakedep/configure
1.4+122-0util/gccmakedep/ChangeLog
+2,981-2,5778 files not shown
+3,233-2,65414 files

OpenBSD/xenocara KmiwAueapp/xwud depcomp missing

   Update xwud to 1.0.8
VersionDeltaFile
1.4+206-202app/xwud/depcomp
1.4+144-259app/xwud/missing
1.15+146-124app/xwud/aclocal.m4
1.10+131-110app/xwud/Makefile.in
1.15+68-146app/xwud/configure
1.9+66-55app/xwud/xwud.c
+761-8967 files not shown
+1,079-1,00713 files

OpenBSD/xenocara kMhlsXXapp/xwd config.sub config.guess

   Update to xwd 1.0.10
VersionDeltaFile
1.4+1,471-1,293app/xwd/config.sub
1.4+1,028-753app/xwd/config.guess
1.4+206-202app/xwd/depcomp
1.4+144-259app/xwd/missing
1.17+148-126app/xwd/aclocal.m4
1.11+128-108app/xwd/Makefile.in
+3,125-2,74111 files not shown
+3,552-3,00717 files

OpenBSD/xenocara vJuYw6sapp/xvinfo configure config.sub

   Update to xvinfo 1.1.6
VersionDeltaFile
1.15+3,508-3,164app/xvinfo/configure
1.4+1,471-1,293app/xvinfo/config.sub
1.4+1,028-753app/xvinfo/config.guess
1.4+216-202app/xvinfo/install-sh
1.4+206-202app/xvinfo/depcomp
1.4+144-259app/xvinfo/missing
+6,573-5,87311 files not shown
+7,187-6,21717 files

OpenBSD/xenocara rTCo7Vbapp/xsetroot configure config.sub

   Update to xsetroot 1.1.4
VersionDeltaFile
1.15+3,532-3,182app/xsetroot/configure
1.4+1,471-1,293app/xsetroot/config.sub
1.4+1,028-753app/xsetroot/config.guess
1.4+216-202app/xsetroot/install-sh
1.4+206-202app/xsetroot/depcomp
1.4+144-259app/xsetroot/missing
+6,597-5,89111 files not shown
+7,338-6,33517 files

OpenBSD/xenocara RtepvHiapp/xset configure config.sub

   Update to xset 1.2.6
VersionDeltaFile
1.18+3,692-3,365app/xset/configure
1.4+1,471-1,293app/xset/config.sub
1.4+1,028-753app/xset/config.guess
1.4+216-202app/xset/install-sh
1.4+206-202app/xset/depcomp
1.4+144-259app/xset/missing
+6,757-6,07413 files not shown
+7,744-6,60119 files

OpenBSD/xenocara TVZvl3Zapp/xrefresh meson.build

   missed cvs add
VersionDeltaFile
1.1+88-0app/xrefresh/meson.build
+88-01 files

OpenBSD/xenocara Fcl0m3aapp/xrefresh config.sub config.guess

   Update to xrefresh 1.1.1
VersionDeltaFile
1.3+1,471-1,293app/xrefresh/config.sub
1.3+1,028-753app/xrefresh/config.guess
1.3+206-202app/xrefresh/depcomp
1.3+144-259app/xrefresh/missing
1.15+68-216app/xrefresh/configure
1.15+148-126app/xrefresh/aclocal.m4
+3,065-2,8499 files not shown
+3,473-3,07915 files

OpenBSD/xenocara CJAO5O5app/xrdb config.sub config.guess

   Update to xrdb 1.2.3
VersionDeltaFile
1.4+1,471-1,293app/xrdb/config.sub
1.4+1,028-753app/xrdb/config.guess
1.4+206-202app/xrdb/depcomp
1.4+144-259app/xrdb/missing
1.17+148-126app/xrdb/aclocal.m4
1.14+128-107app/xrdb/Makefile.in
+3,125-2,74010 files not shown
+3,656-3,04616 files

OpenBSD/xenocara UEMMAnUapp/xlsfonts config.sub config.guess

   Update to xlsfonts 1.0.9
VersionDeltaFile
1.4+1,471-1,293app/xlsfonts/config.sub
1.4+1,028-753app/xlsfonts/config.guess
1.4+206-202app/xlsfonts/depcomp
1.4+144-259app/xlsfonts/missing
1.15+148-126app/xlsfonts/aclocal.m4
1.11+131-110app/xlsfonts/Makefile.in
+3,128-2,74312 files not shown
+3,600-2,99718 files

OpenBSD/xenocara hd6lbojapp/xlsatoms configure config.sub

   Update to xlsatoms 1.1.5
VersionDeltaFile
1.15+3,508-3,164app/xlsatoms/configure
1.4+1,471-1,293app/xlsatoms/config.sub
1.4+1,028-753app/xlsatoms/config.guess
1.4+216-202app/xlsatoms/install-sh
1.4+206-202app/xlsatoms/depcomp
1.4+144-259app/xlsatoms/missing
+6,573-5,87312 files not shown
+7,222-6,22618 files

OpenBSD/xenocara CcYDjnQapp/xkbutils config.sub config.guess

   Update to xkbutils 1.0.7
VersionDeltaFile
1.3+1,471-1,293app/xkbutils/config.sub
1.3+1,028-753app/xkbutils/config.guess
1.4+206-202app/xkbutils/depcomp
1.4+144-259app/xkbutils/missing
1.14+73-221app/xkbutils/configure
1.14+149-127app/xkbutils/aclocal.m4
+3,071-2,85521 files not shown
+3,684-3,18927 files

OpenBSD/src eOpR6LUsys/kern kern_sysctl.c sysv_shm.c, sys/sys sem.h shm.h

   Move SysV sysctl(2) handlers out of sysctl_vslock(). They don't need to
   wire userland pages, but have sleeping malloc() calls which could block
   the locked sysctl(2) paths. Introduce rwlocks to serialize access to
   `seminfo' and `shminfo' respectively. The whole SysV IPC layer relies on
   kernel lock, but sysctl_sysvsem() and sysctl_sysvshm() paths have
   context switch requires the extra serialization.

   Joint work with and OK from kirill.
VersionDeltaFile
1.495+115-108sys/kern/kern_sysctl.c
1.86+34-7sys/kern/sysv_shm.c
1.70+23-5sys/kern/sysv_sem.c
1.49+3-1sys/kern/sysv_msg.c
1.30+2-1sys/sys/sem.h
1.32+2-1sys/sys/shm.h
+179-1236 files