OpenSSH 9.2/9.2p1 released!

Contributed by grey on 2023-02-02 from the OpenSSH now with more of everything! dept.

OpenSSH 9.2 was released on 2023-02-02. It is available from the mirrors listed at https://www.openssh.com/.

As should be of no surprise to undeadly readers, OpenSSH is a 100% complete SSH protocol 2.0 implementation and includes sftp client and server support.

No comments

Game of Trees 0.83 released

Contributed by rueda on 2023-01-31 from the tick-tick-tick dept.

Version 0.83 of Game of Trees has been released (and the port updated):

No comments

Execute-only status report

Contributed by rueda on 2023-01-30 from the anti-BROP dept.

Theo de Raadt (deraadt@) posted to tech@ a status report (and 2 test programs) regarding execute-only (xonly). The report begins:

We've made good progress in the xonly effort so here's a small summary.

architectures crossed over completely

	arm64 - X bit without implied R in mmu
	riscv64  - X bit without implied R in mmu
	amd64 - using hardware 'PKU' feature
	powerpc64 - using feature similar to PKU
	hppa - using gateway feature

No comments

Console screendumps

Contributed by rueda on 2023-01-28 from the oh-my-console dept.

As part of her efforts in developing patches for the console (many of which have been committed recently), Crystal Kolipe created some patches for taking screenshots of the OpenBSD console.

She wrote an in depth article, Coding new ioctls to produce screendumps from the console, about her work.

We will look forward to further development and refinement on this.

1 comment (7d12:46 ago)

Game of Trees 0.82 released.

Contributed by grey on 2023-01-24 from the rapidly iterating version numbers dept.

Game of Trees 0.82 has been released (and the port updated).

No comments

amd64 execute-only committed to -current

Contributed by rueda on 2023-01-21 from the harder-and-harder dept.

Support for execute-only (xonly) code (on which we reported earlier) has been committed to -current by Theo de Raadt (deraadt@).

The commits were:

No comments

Game of Trees milestone

Contributed by rueda on 2023-01-20 from the game of dogfooding dept.

In a toot, Stefan Sperling (stsp@) announced:

#gameoftrees has reached another milestone […] We now offer public anonymous access to our Git repository via SSH, using our own server implementation (available in the ports tree of #OpenBSD -current).

git clone ssh://anonymous@got.gameoftrees.org/got.git
[…]

No comments

`sshd` random relinking at boot

Contributed by rueda on 2023-01-19 from the sshd-mk-thngs-hrdr dept.

As with library order randomisation (libc.so/libcrypto/ld.so) at boot and kernel relinking at boot, boot time relinking of sshd(8) is now implemented in -current. Theo de Raadt committed the changes:

No comments

Game of Trees 0.80 released.

Contributed by grey on 2023-01-17 from the gameoftrees does not tease dept.

Game of Trees 0.80 has been released (and the port updated).

No comments

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

Earlier Articles

Sun, Jan 15
- 09:52 Testing wanted: execute-only on amd64 (0)
Wed, Jan 11
- 06:32 retguard for amd64 system calls (0)
Thu, Dec 29
- 10:38 OpenBSD KDE Status Report 2022 (0)
Wed, Dec 14
- 06:50 rpki-client 8.2 released (0)
Mon, Dec 12
- 18:35 LibreSSL 3.7.0 Released (0)
Sun, Dec 11
- 16:48 BIOS Memory Map for vmd(8) Rewrite in Progress (0)
Thu, Dec 08
- 08:20 Fuzzing ping(8) … and finding a 24 year old bug. (1)
Tue, Dec 06
- 06:26 lladdr-tied interface config support has been committed (0)
Fri, Dec 02
- 23:07 OpenIKED 7.2 released (0)

OpenBSD Errata

OpenBSD 7.2

017	2023-02-02 SECURITY A double-free in the sshd pre-auth unprivileged process (not believed to be exploitable).
016	2023-01-21 SECURITY vmd(8) exposed unsupported cpuid feature flags to guests.
015	2023-01-21 SECURITY vmm(4) exposed unsupported cpuid feature flags to guests.
014	2023-01-17 SECURITY Input validation issues and path validation issues in libXpm can lead to infinite loops, memory corruption or arbitrary command execution. CVE-2022-46285, CVE-2022-44617 and CVE-2022-4883
013	2023-01-13 SECURITY A TCP packet with destination port 0 that matches a pf divert-to rule could crash the kernel.
012	2022-12-16 RELIABILITY Removing a domain can result in an out-of-bounds write in acme-client(8).

OpenBSD Resources

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve:

Options are available.

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]