tb 06bb1433e0 Avoid out-of-bounds read in CMS password-based decryption ...

The RFC 3211 PWRI integrity check when unwrapping the password-derived key
accesses seven bytes from a heap-allocated buffer. If an (invalid) block
cipher with short blocks is in use 2 * blocksize may not be sufficient room
for 7 bytes. In that silly case, the function performs an OOB read. Add
length check to avoid this situation

From Igor Ustinov via OpenSSL.

2026-06-09 12:20:34 +00:00

bin

bin/ksh: preserve tildes in completion

2026-05-22 18:11:08 +00:00

distrib

sync

2026-06-04 15:01:00 +00:00

etc

Import updated modili

2026-06-07 08:21:06 +00:00

games

…

gnu

fix a mismerged patch for defaulting to -mno-relax on OpenBSD; from Brad

2026-06-09 06:41:08 +00:00

include

FNM_CASEFOLD (and its synonym FNM_IGNORECASE) are now part of POSIX.1-2024

2026-03-29 14:08:46 +00:00

lib

Avoid out-of-bounds read in CMS password-based decryption

2026-06-09 12:20:34 +00:00

libexec

While technically allowed, shared libraries without PT_LOAD segments

2026-05-10 09:10:02 +00:00

regress

fmt_scaled: add some regress for signed overflow edge cases.

2026-06-09 06:01:28 +00:00

sbin

sbin/ifconfig: document new nwflag uapsd

2026-05-28 10:52:39 +00:00

share

A new variable (RELINK) makes rules for creating a relink tar file and

2026-05-27 13:48:56 +00:00

sys

call rasops_show_screen() in inteldrm_activate() wakeup

2026-06-09 11:23:02 +00:00

usr.bin

Two fixes for RI codepoints. Firstly, do not combine more than two of

2026-06-09 11:49:36 +00:00

usr.sbin

when no constraints are configured, do not wait for constraint replies

2026-06-08 12:46:17 +00:00

.gitignore

…

Makefile

…

Makefile.cross

…

S

Description

Unofficial mirror of the source tree

openbsd

1.6 GiB

Languages

C 55.5%

C++ 31%

Perl 3.8%

Roff 2.9%

Makefile 0.9%

Other 5.4%