Contributed by
Peter N. M. Hansteen
on
from the SSLaying the code flensing dept.
In a not-quite-unexpected announcement, the LibreSSL development team released the new versions. The announcement reads,
Subject: LibreSSL 3.8.4 and 3.9.1 released
From: Brent Cook <busterb () gmail ! com>
Date: 2024-03-28 4:47:28
We have released LibreSSL 3.8.4 and 3.9.1 which will be arriving in the
LibreSSL directory of your local OpenBSD mirror soon. LibreSSL 3.9.1 is
the first stable release for the 3.9.x branch, and will also be
available with OpenBSD 7.5.
* got 0.97; 2024-03-11
see git repository history for per-change authorship information
- improve error messages shown upon execv failure
- fix 'gotadmin pack' crash upon Ctrl-C due to invalid imsg_free()
- significantly speed up deltification of large files
- improve error handling in got_privsep_recv_imsg()
WWe have released LibreSSL 3.8.3, which will be arriving in the
LibreSSL directory of your local OpenBSD mirror soon. This is the
second stable release for the 3.8.x branch.
It includes the following changes from LibreSSL 3.8.2
* Portable changes
- Removed assert pop-ups with Windows debug builds.
- Fixed crashes and hangs in Windows ARM64 builds.
- Improved control-flow enforcement (CET) support.
The LibreSSL project continues improvement of the codebase to reflect modern,
safe programming practices. We welcome feedback and improvements from the
broader community. Thanks to all of the contributors who helped make this
release possible.
Subject: OpenBGPD 8.4 released
From: Claudio Jeker <claudio () openbsd ! org>
Date: 2024-03-07 13:12:51
We have released OpenBGPD 8.4, which will be arriving in the
OpenBGPD directory of your local OpenBSD mirror soon.
In what can only be called a great stride forward in routing security, Sebastian Benoit (benno@)
announced
the availability of rpki-client
version 9.0.
The announcement reads,
Subject: rpki-client 9.0 released
From: Sebastian Benoit <benno () openbsd ! org>
Date: 2024-03-03 17:24:06
rpki-client 9.0 has just been released and will be available in the
rpki-client directory of any OpenBSD mirror soon. It is recommended
that all users update to this version for improved reliability.
rpki-client is a FREE, easy-to-use implementation of the Resource
Public Key Infrastructure (RPKI) for Relying Parties (RP) to
facilitate validation of BGP announcements. The program queries the
global RPKI repository system and validates untrusted network inputs.
The program outputs validated ROA payloads, BGPsec Router keys, and
ASPA payloads in configuration formats suitable for OpenBGPD and BIRD,
and supports emitting CSV and JSON for consumption by other routing
stacks.
CVSROOT: /cvs
Module name: src
Changes by: claudio@cvs.openbsd.org 2024/02/21 03:48:10
Modified files:
sys/dev/pci : files.pci
Added files:
sys/dev/pci : if_mwx.c if_mwxreg.h
Log message:
Import mwx(4) a driver for Mediatek MT7921 and MT7922 802.11ax devices
This is work in progress. Scan works, RX of packets is more or less there
but TX does not work yet. The packets are passed to the chip but get stuck
or ignored there. It is easy to hang the device or the system since device
reset is not quite right (like many other bits).
Also this is only for MT7921 right now since I have no access to a MT7922
device.
Lots of pushing from deraadt@ to commit this now.
So, WIP and
MT7921-only
[at this stage], but very promising.
We are constantly on the lookout for stories of how you put OpenBSD to work.
Please submit any informative articles on how OpenBSD is helping your company.
2024-02-13SECURITYDNSSEC protocol vulnerabilities have been discovered that render various DNSSEC validators victims of Denial Of Service while trying to validate specially crafted DNSSEC responses. Fix CVE-2023-50387 and CVE-2023-50868 in unwind(8) and unbound(8).
2024-02-13SECURITYDNSSEC protocol vulnerabilities have been discovered that render various DNSSEC validators victims of Denial Of Service while trying to validate specially crafted DNSSEC responses. Fix CVE-2023-50387 and CVE-2023-50868 in unwind(8) and unbound(8).