python3 yocto-util.py -b kirkstone...scarthgap -g -l --grep="(CVE-|CWE-|security|vulnerab|overflow|use-after-free|uaf|xss|csrf|injection)"
git://github.com/FreeRADIUS/freeradius-server.git v3.0.x::f317c5b2668a4de7065df46b31267cd6ff32ddf1..v3.2.x::a696279897f9e87c2fb2b1b8388da5a4aa09835f
0947439f25:2024-06-29:implement and document "limit_proxy_state = auto"
c49bf2a34e:2023-08-15:Add config variables for lookback code, and make TIME_STEP and OTP sixe configurable.
3c06f274dd:2023-08-11:Add lookback capability to address transit delay
314c5d9986:2023-03-08:Fix runtime LSAN/ASAN error in src/lib/dict.c
36ffb590e9:2023-03-14:Fix heap-buffer-overflow in pap_auth_pbkdf2_parse()
68e56c106b:2022-01-19:tell the user things that OpenSSL won't.
git://github.com/pmem/pmdk.git stable-1.11::5b21904a257eff47f2e87fcbf2de46111f03ddd8..master::ba92d6b469d52d16f26279bebaf317bbdbb3822c
b4041e4ea:2023-07-27:common: reduce PMem fault injection testing to the debug build
bde0db6fc:2023-07-25:common: rationalize fault injection testing
4ceb80bde:2023-07-25:test: introduce fault_injection test label (Python)
2afe53093:2023-07-25:test: introduce fault_injection test label (Bash)
cac9ff998:2023-07-04:common: add SECURITY.md according to Intel policy
bdb5c7ec3:2022-09-14:test: add more security checks for pmempool input
4c95db322:2022-08-16:Squashed 'src/deps/miniasync/' changes from 706d2635f..f3b809217
e9f8db225:2022-07-06:examples: fix potential buffer overflow in pmemobjfs example
0a1f0a9b4:2022-07-06:examples: fix potential buffer overflow in pmemobjfs example
a52606b24:2022-05-11:common: add Bandit security scan for pmreorder tool
b2c565ec3:2022-05-10:test: don't use a FILE pointer after fclose
6d0406b96:2020-02-04:test: (py) enable unsafe shutdown injection
git://github.com/libass/libass.git master::73284b676b12b47e17af2ef1b430527299e10c17..0.17.1-branch::e8ad72accd3a84268275a9385beb701c9284e5b3
abd7cd5:2022-09-28:parse: avoid signed overflow for effect_skip_timing
a48c98c:2022-01-22:wrap_lines: fix unsafe reallocation
18cde90:2021-03-14:wrap_lines: do not merge linebreaks
334e556:2021-03-13:Add WRAP_UNICODE feature
7bc0c45:2022-07-05:fuzz/libfuzzer: reset handles after release
8e80f49:2022-04-24:render: avoid crash on negative Fontsize
d1140ac:2022-04-16:render: avoid UB on left shifts
5125a9a:2022-04-16:parse: replace argtoi with argtoi32
1daecf4:2021-08-08:Fix UB introduced in the previous commit
677e8e3:2021-06-17:fontconfig: fix misplaced overflow check
8701c53:2021-03-26:library: replace grow_array with ASS_REALLOC_ARRAY
34cbd0f:2020-10-16:process_karaoke_effects: use long long for timestamps
68a77d1:2020-10-18:Handle realloc fail in process_fonts_line
910211f:2020-10-18:parser_priv: Change type of fontdata_{size,used} to size_t
26855a4:2020-10-11:API: make ass_alloc_{style,event} alloc-fail safe
3250a3b:2017-02-03:Prevent int overflow where unsigned wraparound is desired
815aae8:2017-02-03:Fix mult_alpha of large argument
894e1d5:2017-02-04:ass_lazy_track_init: avoid integer overflow in multiply-divide
7913e4a:2020-10-10:parse_tag: handle timestamps w/o overflow & like VSFilter
b06e297:2017-02-04:Fix integer overflow while parsing \fad(arg, large negative number)
676f9dc:2020-09-27:outline: fix overflows in outline processing
9b04e56:2020-09-16:ass_parse: avoid UB and match vsfilter on negative-accel color animation
66cef67:2020-08-28:Assert finite parse_tags recursion
f353ccf:2020-02-04:ass_blur: check for memory allocation size overflows
f62f5f0:2019-03-23:fontselect: add overflow check
c80f332:2019-05-20:Consolidate and quantize all transformations
6835731:2018-01-04:parse_tags: don't recurse for nested \t()
git://github.com/systemd/systemd-stable.git v250-stable::73be9643910c3f7f3ff84765d63060846c110016..v255-stable::387a14a7b67b8b76adaed4175e14bb7e39b2f738
51b1a49426:2024-02-21:test: temporarily enable session lingering for the test user #2
2dfc3b2cb7:2024-02-13:meson: do not attempt to install tests when they are disabled
310405ff82:2024-01-26:timesyncd: make the transmit timestamp in requests fully random
0cb90f97fd:2024-02-19:sd-radv: fix potential buffer overflow
fb974c8827:2024-01-12:journal-remote: use macro wrapper instead of alloca to extend string
487a7a85b9:2024-01-09:analyze: man and --help fixes
4332dc5369:2024-01-02:basic: fix overflow detection in sigbus_pop
9ee5ab00e0:2023-12-08:test: avoid NO_CAST.INTEGER_OVERFLOW in test-oomd-util (#30365)
14338cca99:2023-11-28:core/cgroup: fix compile error
e375bc5fcc:2023-08-18:journalctl: verify sealed log epochs are continuous
38cce239c1:2023-11-03:cryptsetup: do not print (null) if pkcs11 uri not set
69d17e23db:2023-11-02:varlink: limit the maximum nesting depth
1761066b13:2023-10-27:storagetm: add new systemd-storagetm component
ffee7b97e3:2023-10-18:macro: introduce u64_multiply_safe() to avoid overflow
d54c0f37d8:2023-10-18:macro: paranoia about overflow
3846d3aa29:2023-10-06:journalctl: verify that old entries are not sealed with too recent key (#28885)
714cb48a4f:2023-10-04:docs: fix typo in UEFI_SECURITY.md
d3dde190c1:2023-10-03:docs: fix spelling in UEFI_SECURITY.md
7f9231f0d8:2023-10-03:docs: rephrase sentence about UKIs in UEFI_SECURITY.md
e2ae5f0224:2023-10-03:docs: rephrase sentence about addons measuring in UEFI_SECURITY.md
359d4b04e8:2023-10-02:docs: rename src/boot/efi/SECURITY.md as UEFI_SECURITY.md
1f75b649e7:2023-10-02:doc: add compiler hardening details to UEFI SECURITY.md
858a0dfce6:2023-10-01:docs: add document about UEFI security posture in src/boot/efi/
7406ebd5b6:2023-09-27:resolved: register ipv4only.arpa are private domain
8506bf494d:2023-09-27:units: move units over to ConditionSecurity=measured-uki
340d979af3:2023-09-27:condition: add ConditionSecurity=measured-uki
be8f478c0f:2023-09-27:efi-loader: rename efi_stub_measured() → efi_measured_uki()
d9171a230d:2023-09-08:conf-parser: check overflow in hashmap_find_free_section_line()
5660e68d65:2022-09-28:udev-builtin-net_id: fix potential buffer overflow
6425dec88b:2023-07-31:tests: skip static asserts on old clang versions
96d384ca4f:2023-07-15:Include in manual what DNSSEC=no means in detail
0bf091a626:2023-07-13:proc-cmdline: re-implement proc_cmdline_filter_pid1_args() without using getopt_long()
95d043b159:2023-06-30:unit: add "cvm" option for ConditionSecurity
16290f50e9:2023-07-03:ndisc: clear ndisc captive portal value on bogus zero-len option
0651e71749:2023-06-23:test: test transactions with cycles
3965f173ea:2023-06-22:elf-util: check for overflow when computing end of core's PT_LOAD segments
2b5eff67f5:2023-06-20:hostnamectl: show age of firmware as time span, too
14941724ec:2023-03-26:sleep-config: add comment about security
56595a3730:2023-06-05:ci: Report results from CIFuzz using SARIF
beda8529b9:2023-06-02:test-macro: add ROUND_UP() macro for rounding up to next multiple
241ecd1cc2:2023-05-30:core,shared: add a couple of asserts
831108245e:2023-05-23:core/unit: update bidirectional dependency simultaneously
a60f96fcf5:2023-05-23:core/unit: make JoinsNamespaceOf= implies the inverse dependency
525c3e3438:2023-05-15:nspawn: fix a global-buffer-overflow
cc938f1ce0:2023-05-04:shared: refuse fd == INT_MAX
e28d825127:2023-04-30:sd-journal: fix use-after-free
3e1aec3036:2023-04-26:core/job: handle job ID overflow or conflict more sanely
c49dfd8911:2023-04-26:core/transaction: use hashmap_remove_value() to make not remove job with same ID
37232d55a7:2023-04-26:coredump filter: fix stack overflow with =all
ed6a6bac45:2023-04-20:ratelimit: handle counter overflows somewhat sanely
f7f5657ece:2023-04-15:test: add a couple of basic sanity tests for the security verb
524ea5852a:2023-04-14:mountpoint-util: fix hosed overflow check
b9c1883a9c:2023-03-29:service: add ability to pin fd store
9718afd194:2023-04-11:ci: don't run release wf on `systemd-security`
85a319b65c:2023-04-05:mkosi: Update bundled kconfig
db43717e98:2023-02-14:time-util: use usec_add() and usec_sub_unsigned()
4dab1eb952:2023-02-03:ci: Fix Development Freeze Automation
a133189eee:2023-01-23:journal-file: be a tiny bit more careful with generating seqnums
ef8591951a:2023-01-06:sd-event: don't mistake USEC_INFINITY passed in for overflow
c1fb3319ce:2022-11-30:GA: do not run codeql on systemd-security
bc1a8e2b6e:2022-11-25:sd-netlink: fix possible use-after-free
fb896517ae:2022-11-24:resolved: remove inappropriate assert()
967a868563:2022-11-15:boot: Replace firmware security hooks directly
5489c13bae:2022-11-15:boot: Rework security arch override
50a085143f:2022-11-15:tpm2: add some extra validation of device string before using it
300bba79c2:2022-10-27:condition: Check that subsystem is enabled in ConditionSecurity=tpm2
29dbc62d74:2022-10-13:manager: use target process context to set socket context
09da51f8e9:2022-10-14:boot: Rework shim image verification
0e3c374e8c:2022-09-21:boot: Use proper security arch protocol names
74522aa87f:2022-10-13:test: introduce __eq__() and __ne__()
f9d1709c03:2022-10-13:test: drop unused modules
5c27347693:2022-10-13:test: improve assertion message on failure
3286770daa:2022-10-06:meson: Require TPM2 for measuring utilities
0a8720c7f0:2022-10-03:network: fix use-after-free
5a634f2ec0:2022-09-13:test: drop the use of `tempfile.mktemp()`
06219747f5:2022-08-29:condition: change ConditionKernelVersion= so that =/!= mean literal string comparison, and ==/<> version comparison
413e8650b7:2022-08-31:tree-wide: Use "unmet" for condition checks, not "failed"
df16869660:2022-08-31:shellcheck/labeler: disable on systemd-security
4b3590c324:2022-08-20:network: NetLabel integration
782c6e5c90:2022-08-24:time-util: fix overflow condition in usec_sub_signed()
4473cd7f61:2022-08-06:dhcp: fix potential buffer overflow
ee6c66acc5:2022-05-25:cryptsetup: ask for PIN when trying to activate using a LUKS2 token plugin
d0d6ac67b5:2022-08-04:analyze: Migrate to bus-locator.h
df1cbd1adf:2022-07-22:manager: limit access to private dbus socket
325513bc77:2022-07-04:resolve: mdns: calculate required packet size to store questions and authorities
d50a58e725:2022-07-01:resolve: mdns: fix use-after-free
370999c05b:2022-07-08:resolve: fix possible integer overflow
beeab352de:2022-07-08:resolve: fix heap-buffer-overflow reported by ASAN with strict_string_checks=1
1a2620e8bd:2022-06-23:ci: remove links to "codeless contribution" actions
cf906beaef:2022-06-16:test: add syscall filter tests for analyze security
5862e5561c:2022-06-16:analyze-security: always save syscall name
9db01ca5b0:2022-06-11:dns-domain: make each label nul-terminated
da5fb1877d:2022-06-10:boot/efi-string: check the end of haystack before testing remaining pattern
3cf63830ac:2022-05-03:networkd: NetLabel integration
36cb69fc43:2022-06-03:ci: build systemd with clang with -Dmode=release --optimization=2
38c87ca2ab:2022-06-03:sha256: fix compilation on efi-ia32
4c8d7caf1a:2022-05-27:macro: make ALIGN4() and ALIGN8() also return SIZE_MAX on overflow
89b6a3f13e:2022-05-27:sd-bus: fix buffer overflow
ae00bafdf8:2022-05-21:docs: improve table readability
2eca6d602f:2022-05-17:docs: overhaul styling for example log messages on startpage
f183c4f75a:2022-05-10:efi: include UEFI monotonic boot counter in random seed
756491af39:2022-05-10:core/timer: fix potential use-after-free
734582830b:2022-05-09:core/unit: fix use-after-free
6a59dfa108:2022-04-30:analyze security: print DeviceAllow list
444d9abd06:2022-04-29:analyze: fix crash with online security check
7f40cb7c86:2022-04-20:sd-bus: switch to a manual overflow check in sd_bus_track_add_name()
7d3e856e82:2022-04-20:macro: upgrade ref counting overflow check assert() → assert_se()
6e0cb81505:2022-04-19:creds-tool: add new "has-tpm2" verb
e1be2c779c:2022-04-19:condition: rework ConditionSecurity=tpm2 check on top of tpm2_support()
eef72224a8:2022-04-11:test: adapt install_pam() for openSUSE
2c75ef181d:2022-04-05:manager: fix typo
0a5c6a57c6:2022-03-31:uid-range: add some overflow checks
50ae2966d2:2022-03-17:nspawn: make sure host root can write to the uidmapped mounts we prepare for the container payload
d9bc1c3614:2022-03-16:cgroup: also indicate cgroup delegation state in user-accessible xattr
e3dd9ea8ea:2022-03-13:macro: account for negative values in DECIMAL_STR_WIDTH()
57a22a3f97:2022-02-21:analyze: fully move "security" verb to analyze-security.[ch]
b7de9651db:2022-02-18:generator: Rename password arg
cc5184823f:2022-02-06:sd-dhcp6-client: fix overflow in calculating timeout value
476c0e969a:2022-02-08:sd-boot: add overflow check to TSC reads
73bfd7be04:2022-02-05:resolve: fix potential memleak and use-after-free
0bf78c12b1:2022-02-03:boot: fix pretty nasty typo
007e03b284:2022-02-01:util: another set of CVE-2021-4034 assert()s
69339ae9f7:2022-01-31:tree-wide: some additional checks to avoid CVE-2021-4034 style weaknesses
1637e75707:2022-01-28:shared: be extra paranoid and check if argc > 0
a596631808:2022-01-24:fuzz: add testcases of heap-buffer-overflow for sd-dhcp-server
ab4f9eeb7b:2022-01-24:sd-dhcp-server: fix heap buffer overflow
aa1d0f2587:2021-12-29:boot: Introduce helper macros for offset checking
5b1cf7a9be:2021-11-30:shared/rm-rf: loop over nested directories instead of instead of recursing
git://github.com/LibRaw/LibRaw.git master::0209b6a2caec189e6d1a9b21c10e9e49f46e5a92..0.21-stable::1ef70158d7fde1ced6aaddb0b9443c32a7121d3d
e942a7db:2023-03-18:avoid integer overflow in buffer space check
7c5f35fa:2022-11-18:avoid int overflow in thumbnail search
20d0f3fd:2022-07-12:Fixes stack buffer overflow in LibRaw::parseCR3
c905353b:2020-12-08:kodak_ycbcr_load_raw: prevent possible image[] overflow
git://github.com/FRRouting/frr.git stable/8.2::79188bf710e92acf42fb5b9b0a2e9593a5ee9b05..stable/9.1::ad1766d17be022587fe05ebe1a7bf10e1b7dce19
0cb316c425:2024-06-12:bgpd: Check if we have really enough data before doing memcpy for software version
d35614a95d:2024-06-06:FRR Release 9.1.1
1975d522d5:2024-06-05:nhrpd: Fix nhrp_peer leak
359892fada:2024-05-30:ospf6d: Prevent heap-buffer-overflow with unknown type
4b753fd134:2024-04-16:ospfd: protect call to get_edge() in ospf_te.c
fc77daa322:2024-04-05:ospfd: Correct Opaque LSA Extended parser
64bf99d572:2024-04-03:ospfd: Solved crash in RI parsing with OSPF TE
ab7808ef6e:2024-05-16:isisd: fix heap-after-free with prefix sid
c12c5c1114:2024-01-24:bgpd: Fix format overflow for graceful-restart debug logs
26187b03d9:2024-01-04:bgpd: fix ecommunity_fill_pbr_action heap-buffer-overflow
3eeed525ab:2024-01-03:isisd: fix _isis_spftree_del heap-use-after-free
41c7a439d4:2023-11-28:bgpd: fix bgp_best_selection heap-use-after-free
43c144f9ba:2023-11-22:zebra: fix dplane_ctx_iptable use-after-free
c929e1ab43:2023-11-21:bgpd: Flush attrs only if we don't have to announce a conditional route
f96201e104:2023-08-18:bgpd: Make sure we have enough data to read two bytes when validating AIGP
77e838eb9a:2023-07-01:ospf6d: Fix crash because neighbor structure was freed
ff6b14a658:2023-05-29:zebra: use ifindex vs ifp to avoid use-after-free on shutdown
a82a6d409d:2023-05-23:ripd: Use argv_find to avoid buffer overflow when parsing allow-ecmp args
b17c179664:2023-05-10:bfdd: Fix malformed session with vrf
9ba97a35a6:2023-04-28:bgpd: add some flowspec sanity returns
b571d79d64:2023-03-31:bgpd: fix ecommunity parsing for AS4
7a185ac85e:2023-03-21:staticd: Tell bfd that we are shutting down
7eefea98ba:2023-03-20:zebra: Fix for heap-use-after-free in EVPN
0b999c886e:2023-02-23:bgpd: Flowspec overflow issue
5c71306220:2021-09-23:zebra: svd and mvab bug fixes
e9340ff429:2023-02-09:bgpd: Intern default-originate attributes to avoid use-after-free
432ff4b036:2023-02-06:bgpd: fix use-after-free crash for evpn
efa354a978:2023-01-09:lib: fix wrong returned value for filter
a5c6a9b18e:2023-01-06:bgpd: Add `neighbor path-attribute discard` command
2e7e3f8a70:2022-11-02:debian, redhat: updating changelog for new release
b242e73b0b:2022-11-28:bgpd: Prevent use after free of peer structure
c2270bf19d:2022-12-03:zebra: Cleanup use after free in shutdown
f568f8734f:2022-12-03:ldpd: Clean up use after free in shutdown
b381ed97a6:2022-11-29:bgpd: Adjust received prefix count only when we validate the nexthop
4dfe15200a:2022-11-23:ospf6d: fix infinite loop when adding ASBR route
22efe557f1:2022-11-18:zebra: Fix use-after-free issue in srte cleanup
edc3f63167:2022-07-07:bfdd: allow l3vrf bfd sessions without udp leaking
ce39ca16dd:2022-07-17:zebra: Avoid buffer overflow using netlink_parse_rtattr_nested()
62e91cdcf2:2022-06-15:doc: document ldpd's "ttl-security" commands
45f64029dc:2022-06-15:tests: fix ldp_vpls_topo1 to work as expected
69ecbc6ae7:2022-06-10:bgpd: Set TTL for iBGP/eBGP by checking only if Generic TTL security applied
c047b50638:2022-06-01:ospf6d: fix rx/tx buffer sizes
ecb490350e:2022-04-24:staticd: use double pointer for NHT decref
4008aa1a24:2022-03-24:bgpd: Turn off thread when running `no bmp targets X`
46da676a62:2022-02-18:bfdd: Fix overflow possibility with time statements
0911206097:2022-02-05:bgpd: Free only subattributes, not the whole attr_extra pointer
50044ec7fe:2022-02-03:babeld: fix #10487 by adding a check on packet length
git://github.com/tesseract-ocr/tesseract.git 4.1::f38e7a7ba850b668d4505dd4c712238d7ec63ca8..main::8ee020e14cf5be4e3f0e9beb09b6b050a1871854
6cb82d8b:2022-07-18:Avoid 32 bit overflow in multiplication (fixes 3 CodeQL CI alerts)
98e61a7e:2023-03-06:Improve the DebugDump output by slightly adjusting the format. (#4022)
c6b25f3b:2021-11-02:Add assertions in IntCastRounded
565d3912:2021-11-01:Fix compiler warnings with -Wformat-security
91b2b4f4:2021-04-12:Fix OSS-Fuzz issue 32142 (container-overflow write)
cca46e6b:2021-04-11:Fix another use-after-free (issue #3394)
33fa9d32:2021-04-11:Fix use-after-free (issue #3394)
883353df:2021-03-20:Replace std::array by std::vector to avoid stack overflow
422452b9:2021-02-25:Check for float errors when running tesseract and lstmtraining
411ffa90:2020-06-29:Fix unsigned integer overflow
cfabdfe0:2020-06-22:Avoid buffer overflow (issue #444)
73a38b39:2019-10-18:quadlsq: Fix warnings from LGTM
fdf40672:2019-08-30:Fix warnings from LGTM
git://github.com/nanomsg/nng.git master::169221da8d53b2ca4fda76f894bee8505887a7c6..main::85fbe7f9e4642b554d0d97f2e3ff2aa12978691a
c9a51ecd:2023-04-23:fixes #1658 Possible use-after-free in dialer
539e559e:2022-12-31:Fixes for some security complaints.
git://git.savannah.gnu.org/git/gnulib.git master::0d6e3307bbdb8df4d56043d5f373eeeffe4cbef3..stable-202401::c99c8d491850dc3a6e0b8604a2729d8bc5c0eff1
fe2c2458ee:2023-11-05:fenv-exceptions-tracking-c99 tests: Enhance tests.
f59f3fc00d:2023-10-29:fenv-exceptions-tracking-c99: Fix feraiseexcept (FE_OVERFLOW) on MSVC.
9ea697df4f:2023-10-03:access: Make last change work also when module 'stat' is in use.
e8124353b2:2023-08-20:ldexpl: Fix signed integer overflow.
ef7951ae4d:2023-08-06:Document Android, OpenBSD printf "%n" lack
f8940f4839:2023-05-18:astrxfrm: Fix use-after-free bug.
59f878fa3d:2023-05-04:wcswidth: Fix result in case of overflow.
bdc715b1f7:2023-05-01:regex: prefer C23 style overflow checking
a1d7a31264:2023-05-01:dynarray: prefer C23 style overflow checking
e915c32cc7:2023-05-01:mktime: prefer C23 style overflow checking
4bb14d6949:2023-04-24:fclose: pacify gcc -Wanalyzer-file-leak
6d488119c6:2023-02-04:fts: pacify GCC 13 -Wuse-after-free
35bd46f0c8:2022-12-23:file-has-acl: improve recent NFSv4 support
c25bd64bcf:2022-10-12:doc: improve intprops doc
9331caeffa:2022-08-09:intprops: refactor intprops.h into two
7523bcf5dc:2022-08-09:intprops: refactor _GL_HAS_BUILTIN_OVERFLOW_P
82942a6e83:2022-07-23:Avoid DoS vulnerability through unsafe default assignment.
d682f8de7f:2022-06-12:fchmodat: port better to MS-Windows etc.
6d4fa60ec3:2022-06-11:fchmodat: port to old Linux kernel + newer headers
efa0065f16:2022-05-12:manywarnings: update C warnings for GCC 12
bc25238849:2022-02-26:gettime-res: fix unlikely overflow bug
532b4c9f21:2022-02-26:Document clang -fsanitize=undefined glitch
8268fd1afa:2022-01-16:xstrtol: simplify integer overflow checking
f0b5cdf9a1:2022-01-14:intprops: work around nvc 22.1 bug
ebc4aef867:2021-12-06:intprops: streamline and get ready for Clang 14
1c86f7f3ff:2021-12-06:intprops: Treat EDG-based compilers like Intel compilers.
6aafd2a92b:2021-08-29:base32, base64: treat negative sizes as overflows
ba3c445a44:2021-08-28:execle, execve, execvpe tests: Fix test failures under qemu user-mode.
452e8a8f7b:2021-08-27:base32, base64: prefer signed to unsigned integers
b034c7933b:2021-08-22:gnulib-common.m4: Use C2x [[maybe_unused]] when possible.
6dae7213a2:2021-08-02:manywarnings: enable some malloc warnings
dbc0251f52:2021-08-01:sigsegv-tests: make more things static
7869c5e1fa:2021-06-21:sigsegv, sigsegv-tests: Assign my contributions to the FSF.
0647171f08:2021-06-19:sigsegv, sigsegv-tests: Assign my contributions to the FSF.
993ca832d2:2021-06-09:sigsegv tests: Hide a null pointer from the compiler's optimizations.
5352f36556:2021-06-08:sigsegv: Document context type for DragonFly BSD.
40e416dd1d:2021-05-17:c-stack: Support catching stack overflow on most platforms without libsigsegv.
8e99f24c09:2021-05-17:sigsegv, c-stack: Avoid compilation error with glibc >= 2.34.
a6a6528db2:2021-05-16:sigsegv: Add tests.
aa0bbfd233:2021-05-14:c-stack: work around Solaris 11 bugs
3b4cd76a8e:2021-05-13:reallocarray tests: Avoid test failure on NetBSD.
cc98a5e2fd:2021-04-24:xmalloca, etc.: fix some xalloc-oversized issues
a7477abe29:2021-04-24:reallocarray: check for ptrdiff_t overflow
e25cfaa3b5:2021-04-24:calloc-gnu-tests: add overflow tests
7e605302f7:2021-04-21:malloca: avoid ptrdiff_t overflow
87e2ea351c:2021-04-21:careadlinkat: avoid ptrdiff_t overflow
5d5120d76b:2021-04-18:safe-alloc: fix pointer implementation
d4e52e5e3c:2021-04-18:safe-alloc: simplify via reallocarray
650f0a6c66:2021-04-18:backupfile: simplify via realloc-gnu
abe94812b3:2021-04-18:malloc-gnu-tests, etc.: test ptrdiff_t overflow
58fe105490:2021-04-17:malloc, etc.: check for ptrdiff_t overflow
a4f1d2cae5:2021-04-07:xalloc: simplify integer overflow test
d985cede39:2021-04-03:savedir: avoid unlikely undefined behavior
af3745fb17:2021-03-21:tests: fix signed overflow issues
cc0b1d7291:2021-02-07:c-stack: Adjust for MidnightBSD.
591b1214ab:2021-01-20:exec*e tests: Avoid test failures on Cygwin.
1731fef3d6:2021-01-08:regexec: remove alloca usage in build_trtable
921d2ea19b:2021-01-08:dynarray: new module
6999cd1357:2021-01-02:getgroups test: Avoid warning with glibc >= 2.32 and gcc >= 10.
649e713c1e:2020-12-29:canonicalize: fix size overflow treatment
6a5be910cc:2020-12-29:canonicalize: fix ptrdiff_t overflow bug
d82dfeb8a7:2020-12-28:faccessat: revert recent EOVERFLOW change
c24b5cc4a8:2020-12-26:execve: Add tests.
f58714504e:2020-12-24:canonicalize: prefer faccessat to stat
6c98a29696:2020-12-24:faccessat: work around F_OK EOVERFLOW bug
340dcbd879:2020-12-24:stat failing with EOVERFLOW implies existence
2d83594993:2020-12-18:intprops: port to ICC 2021.1 Beta 20201112
55168f5fa7:2020-12-18:intprops: Avoid potentially buggy __builtin_add_overflow in GCC 5, 6.
8306b5c9dd:2020-12-14:canonicalize-lgpl: simplify merge to glibc
a254945480:2020-12-13:readlink, readlinkat: add ERANGE portability
5702213bff:2020-12-06:doc: Tweak example.
c3545bddda:2020-12-05:intprops: Add INT_ADD_OK etc.
ae9456c946:2020-12-04:intprops: update doc and mention Unisys
abbbc51d63:2020-12-02:canonicalize: prefer signed integer types
14fa05f5d7:2020-12-02:canonicalize: fix most of another EOVERFLOW issue
47f74ead5c:2020-12-02:canonicalize: fix EOVERFLOW bug
1e04bb6ea8:2020-12-02:canonicalize-lgpl: fix EOVERFLOW bug
e2739ba631:2020-11-11:time_rz: simplify CVE-2017-7476 fix
00ffb79c52:2020-11-11:parse-datetime: streamline overflow checking
a5578a71ef:2020-10-19:selinux-at, selinux-h: port to SELinux 3.1
8ba9126d00:2020-09-20:c-stack: improve checking if !libsigsegv
494aaa530b:2020-09-17:intprops, xalloc: avoid __builtin_mul_overflow_p with Clang
5d4cdc813c:2020-08-23:intprops: fix INT_MULTIPLY_WRAPV bit-field bug
76361a07d7:2020-08-16:Fix "warning: integer overflow in expression".
90cc47f284:2020-08-09:intprops: Fix typo in comment.
67306f600f:2020-05-31:fnmatch: merge from glibc
c8b9cf33a9:2020-05-15:c-stack: pacify -Wunused-result when DEBUG
bf718ebcb3:2020-02-02:read-file: reduce max size from SIZE_MAX to PTRDIFF_MAX
717766da89:2020-01-17:glob: Fix use-after-free bug.
f935bab8ad:2019-12-22:gethrxtime: remove incorrect overflow detection
c532bd7386:2019-12-11:dfa: prefer signed integers for internals
d8322e93dc:2019-12-11:dfa: fix index overflow
56ca994d47:2019-10-23:nstrftime: speed up integer overflow checking
f5756b919a:2019-10-23:Port better to GCC under macOS
ec0624f9f9:2019-08-27:Revert macOS INT_MULTIPLY_WRAPV patch
56663b4735:2019-08-27:Speed up INT_MULTIPLY_WRAPV on macOS
4c352322c5:2019-08-25:intprops.h, verify.h: port better to clang
77daeef875:2019-08-24:intprops: say why not Clang __builtin_add_overflow
45cb2a14a6:2019-08-14:intprops: support uchar, ushort _WRAPV dests
96b8849e02:2019-08-14:intprops: pacify picky GCC
8a7ac1d24a:2019-08-14:intprops: support unsigned *_WRAPV results
b827d8a6fa:2019-06-10:posix_spawn_file_actions_addchdir: Fix possible use-after-free bug.
765146c333:2019-06-10:posix_spawn_file_actions_addopen: Fix possible use-after-free bug.
68cc43e4ff:2019-03-16:bitset: fix overflows
01ec92af9f:2019-03-08:unictype/numeric: Fix undefined behaviour.
git://github.com/intel/openlldp.git master::b71bfb87fefb31c4b1a6a7ae351791c90966c3a8..branch-1.1::f1dd9eb961fab06723d2bedb2f7e2b81e45ee9ab
4d81b69:2023-03-09:dcbx: Fix use-after-free
0d24edf:2016-06-21:vdptool: fix possible buffer overflow in print_all_vsis()
7b72c76:2016-06-21:parse_cli: fixup possible buffer overflow in up2tc
939a5ac:2016-06-21:lldp_dcbx_cfg: Remove false assert() statement
b96acac:2016-06-21:vpd: use-after-free issue in vdp_indicate()
b6a4aae:2016-06-21:vpd22sm.c: Use-after-free issue in vpd22br_run()
git://github.com/apache/nifi-minifi-cpp.git master::aa42957a2e227df41510047cece3cd606dc1cb6a..main::9b55dc0c0f17a190f3e9ade87070a28faf542c25
dc3239db:2023-08-08:MINIFICPP-2143 Resolve Security/UserID attribute
b0f0873d:2022-04-26:MINIFICPP-1675 Use regex.h instead of std::regex when using libstdc++
c4769dd2:2022-01-04:MINIFICPP-1290 Create test coverage for OPC processors
767435de:2021-12-01:MINIFICPP-1677 Add SASL options to Kafka processors
dbebda51:2021-09-13:MINIFICPP-1374 Implement security protocol support for ConsumeKafka
bdb52a20:2021-01-05:MINIFICPP-1440 PublishKafka processor's "security protocol" should have allowable values
8b063ad4:2020-11-12:MINIFICPP-1401 Read certificates from the Windows system store
git://github.com/NLnetLabs/unbound.git master::c29b0e0a96c4d281aef40d69a11c564d6ed1a2c6..None::48b6c60a24e9a5d6d369a7a37c9fe2a767f26abd
326ba265:2024-03-07:- Version set to 1.19.3 for release. After 1.19.2 point release with security fix for CVE-2024-1931, Denial of service when trimming EDE text on positive replies. The code repo includes the fix and is for version 1.19.3.
be27499d:2024-02-13:- These fixes are part of the 1.19.1 release, that is a security point release on 1.19.0, the code repository continues with these fixes, with version number 1.19.2.
92f2a1ca:2024-02-13:- Fix CVE-2023-50868, NSEC3 closest encloser proof can exhaust CPU.
882903f2:2024-02-13:- Fix CVE-2023-50387, DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers.
13771952:2022-09-21:- Patch for CVE-2022-3204 Non-Responsive Delegation Attack.
f6753a0f:2022-08-01:- Fix the novel ghost domain issues CVE-2022-30698 and CVE-2022-30699.
12598355:2022-07-05: add SECURITY.md, based on krill
b202b087:2022-03-03:- Fix for #637: fix integer overflow checks in sldns_str2period.
debe5c66:2022-03-03:- Fix #637: Integer Overflow in sldns_str2period function.
git://github.com/smarty-php/smarty.git master::71036be8be02bf93735c47b0b745f722efbc729f..support/4::f4152e9b814ae2369b6e4935c05e1e0c3654318d
3d2a8dc5:2023-02-23:Update SECURITY.md with correct version info.
254b5cab:2022-09-27:Dropped remaining references to removed PHP-support in Smarty 4 from docs, lexer and security class.
55ea25d1:2022-09-14:Applied appropriate javascript and html escaping in mailto plugin to counter injection attacks Fixes #454
02968a82:2022-08-16:Update SECURITY.md
git://github.com/pybind/pybind11.git master::f7b499615e14d70ab098a20deb0cdb3889998a1a..stable::8a099e44b3d5f85b20f05828d919d2332a8de841
6e6bcca5:2023-05-23:Create s Security Policy (#4671)
git://github.com/cisco/openh264.git openh264v2.1.1::50a1fcf70fafe962c526749991cb4646406933ba..openh264v2.3.1::0a48f4d2e9be2abb4fb01b4c3be83cf44ce91a6e
07120090:2022-05-30:avoid signed integer overflow (#3523)
git://github.com/storaged-project/udisks.git 2.9.x-branch::001c486e6d099ed33e2de4f5c73c03e3ee180f81..2.10.x-branch::bc623acf9e7488dc105e4b00069d57e303e2616b
32197101:2025-06-04:udiskslinuxfilesystemhelpers: Mount private mounts with 'nodev,nosuid'
77c16551:2024-06-10:udiskslinuxmdraid: Refactor error reporting
a3968f57:2024-06-10:udiskslinuxloop: Fix GError use-after-free
632152ae:2022-10-31:iscsi: Document the need of iscsid service restart after changing InitiatorName
git://git.libssh.org/projects/libssh.git stable-0.8::04685a74df9ce1db1bc116a83a0da78b4f4fa1f8..stable-0.10::10e09e273f69e149389b3e0e5d44b8c221c2e7f6
62242101:2023-12-15:CVE-2023-6918: tests: Code coverage for ssh_get_pubkey_hash()
8977e246:2023-12-15:CVE-2023-6918: kdf: Detect context init failures
8b66d037:2023-12-15:CVE-2023-6918: Systematically check return values when calculating digests
63ff2421:2023-12-15:CVE-2023-6918: Remove unused evp functions and types
610d7a09:2023-12-15:CVE-2023-6918: kdf: Reformat
89df7592:2023-12-14:CVE-2023-48795: tests: Adjust calculation to strict kex
5846e575:2023-12-14:CVE-2023-48795: Strip extensions from both kex lists for matching
0870c8db:2023-12-12:CVE-2023-48795: Server side mitigations
4cef5e96:2023-12-12:CVE-2023-48795: client side mitigation
2c492ee1:2023-11-28:CVE-2023-6004: torture_misc: Add tests for ipv6 link-local
cea841d7:2023-11-28:CVE-2023-6004 misc: Add ipv6 link-local check for an ip address
62d3101c:2023-11-06:CVE-2023-6004: torture_misc: Add test for ssh_is_ipaddr
d7467498:2023-10-10:CVE-2023-6004: torture_proxycommand: Add test for proxycommand injection
22492b69:2023-10-10:CVE-2023-6004: config_parser: Check for valid syntax of a hostname if it is a domain name
9bbb817c:2023-10-10:CVE-2023-6004: torture_misc: Add test for ssh_check_hostname_syntax
c6180409:2023-10-10:CVE-2023-6004: misc: Add function to check allowed characters of a hostname
8615c246:2023-10-31:CVE-2023-6004: options: Simplify the hostname parsing in ssh_options_set
a66b4a6e:2023-11-01:CVE-2023-6004: config_parser: Allow multiple '@' in usernames
c2c56bac:2023-11-05:CVE-2023-6004: torture_config: Allow multiple '@' in usernames
c68a5857:2023-04-24:CVE-2023-2283:pki_crypto: Remove unnecessary NULL check
e8dfbb85:2023-04-24:CVE-2023-2283:pki_crypto: Fix possible authentication bypass
dc1254d5:2023-04-17:CVE-2023-1667:tests: Send a bit more to make sure rekey is completed
d08f1b23:2023-03-17:CVE-2023-1667:tests: Client coverage for key exchange with kex guessing
70565ac4:2023-03-16:CVE-2023-1667:kex: Add support for sending first_kex_packet_follows flag
fc1a8bb4:2023-03-10:CVE-2023-1667:kex: Correctly handle last fields of KEXINIT also in the client side
b759ae55:2023-03-17:CVE-2023-1667:dh: Expose the callback cleanup functions
6df2daea:2023-03-16:CVE-2023-1667:kex: Factor out the kex mapping to internal enum
99760776:2023-03-13:CVE-2023-1667:kex: Remove needless function argument
247a4a76:2023-03-14:CVE-2023-1667:packet: Do not allow servers to initiate handshake
a30339d7:2023-03-10:CVE-2023-1667:packet_cb: Log more verbose error if signature verification fails
254bfd6d:2022-05-23:ssh_x11_client: Fix coverity reports
8b9b4506:2022-05-10:Generate new 2k certificate key working in FIPS
42d1efe4:2021-11-09:bind_config: Ignore empty lines
f8817c0c:2021-06-24:tests: Simple reproducer for rekeying with different kex
f5211239:2021-06-23:CVE-2021-3634: Create a separate length for session_id
188d0785:2021-08-09:Update is_cert_type to account for security key certificates.
1694606e:2020-06-19:tests: Add test for CVE-2019-14889
b36272ea:2020-02-11:CVE-2020-1730: Fix a possible segfault when zeroing AES-CTR key
cc9db5b5:2019-11-04:tests: Add a test for SCP with protocol message injection
3830c7ae:2019-10-31:CVE-2019-14889: scp: Quote location to be used on shell
0b5ee397:2019-12-06:CVE-2019-14889: scp: Don't allow file path longer than 32kb
b82d2caa:2019-10-22:CVE-2019-14889: tests: Add unit tests for ssh_quote_file_name()
c4ad1aba:2019-10-22:CVE-2019-14889: misc: Add function to quote file names
c75d417d:2019-10-25:CVE-2019-14889: scp: Log SCP warnings received from the server
42c727d0:2019-10-31:CVE-2019-14889: scp: Reformat scp.c
27bcac68:2019-10-25:CVE-2019-14889: tests: Add tests for SCP client
1af10fcd:2019-02-22:config: Avoid buffer overflow
7a8ed6d0:2019-02-21:pki: Fix size type for len in privatekey_string_to_buffer()
6c7eaa9e:2019-01-22:buffer: Convert argc to size_t in ssh_buffer_unpack() as well
e1548a71:2018-09-07:CVE-2018-10933: Add tests for packet filtering
75be012b:2018-08-28:CVE-2018-10933: Introduced packet filtering
68b0c7a9:2018-09-07:CVE-2018-10933: Check channel state when OPEN_FAILURE arrives
459868c4:2018-09-07:CVE-2018-10933: Check channel state when OPEN_CONFIRMATION arrives
5d741446:2018-09-05:CVE-2018-10933: Set correct state after sending MIC
20981bf2:2018-09-19:CVE-2018-10933: Introduce SSH_AUTH_STATE_AUTH_NONE_SENT
825f4ba9:2018-09-10:CVE-2018-10933: Introduce SSH_AUTH_STATE_PASSWORD_AUTH_SENT
2bddafeb:2018-09-10:CVE-2018-10933: Introduced new auth states
ceecd3fd:2018-09-06:config: Fix size type
11d87238:2018-08-30:poll: Fix size types in ssh_event_free()
a3c8dac6:2018-08-29:tests: Fix size types in pkd
git://github.com/ivmai/bdwgc.git master::47e9106c17b72e9ee5501308f69ea94531e798b3..release-8_2::e340b2e869e02718de9c9d7fa440ef4b35785388
0e58744d:2023-10-04:Handle GC_gc_no counter overflow properly in GC_print_trace (a cherry-pick of commit 42d769885 from 'master')
a850a271:2023-09-06:Workaround mark stack overflow in GC_push_finalizer_structures on MinGW (a cherry-pick of commit 99dbd7ee2 from 'master')
f9d26e20:2023-05-16:Fix GC_excl_table overrun on overflow in GC_exclude_static_roots
bcbe36f5:2022-09-10:Fix 'overflow in conversion from word' g++ warning in GC_init
236fa331:2022-06-14:Ensure typed objects descriptor is never located in the first word (a cherry-pick of commit daa06b3ac from 'master')
e8c5daeb:2022-02-07:Eliminate stringop-overflow gcc-12 warning in CORD__next
b2e2a0bc:2022-02-06:Fix stack overflow in gctest on Alpine Linux/s390x
b7111bf6:2021-12-27:Eliminate 'value exceeds maximum object size' gcc warning in debug_malloc
9c4f4e1c:2021-12-27:Eliminate 'buffer overflow detected' FP error in realloc_test
git://github.com/opencv/opencv.git master::dad26339a975b49cfb6c7dbe4bd5276c9dcb36e2..4.x::dad8af6b17f8e60d7b95a1203a1b4d22f56574cf
d792ebc5d2:2023-05-26:Fixed buffer overrun; removed the last two uses of sprintf
29388f80a5:2023-06-23:fix overflow
66f86e898c:2023-06-02:Fixed potential buffer overflow of user file name in create_samples_app
2083fdc9c0:2023-05-20:Fixed UBSan warning about undefined pointer arithmetic overflow
7bd9dae53d:2023-04-19:Updated PGP key for security reports
a2fc479c0b:2022-12-30:Fix Heap-buffer-overflow READ in opj_jp2_apply_pclr
82010bf5c1:2022-06-24:Fix some overflows in drawing.
dea0815199:2022-05-06:Small imencode documentation improvement
7daf84fb44:2022-04-13:address security concerns in persistence
a2b84e9897:2022-04-13:add assert to tf graph simplifier to address security concerns
8b44ee2ce1:2022-03-30:fix MSA sum overflow issue
git://github.com/sandstorm-io/capnproto.git release-0.9.2::0274bf17374df912ea834687c667bed33bd318db..release-1.0.2::1a0e12c0a3ba1f0dbbad45ddfef555166e0a14fc
165aa788:2023-10-30:Fix stat overflow on x86_32bit (#1830)
bdfd5e5d:2023-06-18:Add RevocableServer, which makes it easy to RPC-wrap unowned objects.
14573f3c:2023-05-15:Fix UAF in http-over-capnp connect() implementation.
88a92272:2023-02-02:Fix obscure UAF with sendForPipeline().
1a70ca8e:2023-01-26:Re-introduce HTTP body stream UAF detection.
599e2776:2023-01-26:Revert "Add a ResetableRef utility to protect against UAF"
8a34db39:2023-01-20:Add a ResetableRef utility to protect against UAF
bd035c17:2023-01-19:Fix TOCTOU bug when recursively deleting a directory with symlinks.
d42e9e06:2022-11-29:Blog post for CVE-2022-46149.
9e39d9c3:2022-11-23:Add security advisory for pointer-list-bounds bug.
070b372a:2022-07-20:Add KJ_ASSUME macro to fix g++ warnings (#1459)
65f01d20:2021-11-13:Refactor `AsyncTee::branches` to be `List<TeeBranch>`.
3a0123ab:2021-10-22:Fix Potential UAF caused by race in MembraneHook
15566661:2021-10-21:Add debugging to detect UAF of Event.
4ef7de2c:2021-10-13:Include CTest module in root
d388a54d:2021-09-09:Fix an obscure code bug in BTreeImpl.
git://github.com/warmcat/libwebsockets.git v4.2-stable::8d605f0649ed1ab6d27a443c7688598ea21fdb75..v4.3-stable::4415e84c095857629863804e941b9e1c2e9347ef
8782a47a:2022-02-23:gcc12: fix potential test app string overflow
243c21de:2021-08-12:ss: add fault injections in creation
4b089788:2021-07-09:tls: mbedtls-3
ee510154:2021-06-29:fi: wsi: fault to fake peer hangup after a delay range
36e7e8af:2021-06-29:fault injection: pseudorandom 64-bit range support
git://github.com/libbpf/libbpf.git master::2cd2d03f63242c048a896179398c68d2dbefe3d6..libbpf-1.4.7::ca72d0731f8c693bd98caba70d951fc0bfe20788
5e80833:2024-03-06:netdev: add per-queue statistics
e1a4380:2024-01-23:libbpf: Wire up BPF token support at BPF object level
82ebbd9:2023-10-25:perf/x86/intel: Support branch counters logging
5df9eba:2023-12-13:libbpf: wire up BPF token support at BPF object level
168630f:2023-11-10:ci: give /dev/kvm 0666 permissions inside CI runner
942a0b8:2023-08-24:Makefile: silence GCC's bogus complaint about possible NULL in printf
4cd8e50:2023-07-09:bpf: Support ->fill_link_info for perf_event
b89ede4:2023-07-09:bpf: Support ->fill_link_info for kprobe_multi
9aea1da:2023-05-24:sync: latest libbpf changes from kernel
bfb0454:2023-05-15:bpf: Support O_PATH FDs in BPF_OBJ_PIN and BPF_OBJ_GET commands
b9711e7:2023-04-27:libbpf: btf_dump_type_data_check_overflow needs to consider BTF_MEMBER_BITFIELD_SIZE
32d34a9:2023-03-08:bpf: implement numbers iterator
e3a4032:2022-12-21:ci: Add patch setting CONFIG_FUNCTION_ERROR_INJECTION in CI
be8f15b:2022-12-02:sync: latest libbpf changes from kernel
0fbf777:2022-11-30:libbpf: Avoid enum forward-declarations in public API in C++ mode
4d21c97:2022-11-16:libbpf: Check the validity of size in user_ring_buffer__reserve()
11ad834:2022-11-16:libbpf: Handle size overflow for user ringbuf mmap
f056d1b:2022-11-16:libbpf: Handle size overflow for ringbuf mmap
fd71ca9:2022-08-24:perf: Add PERF_BR_NEW_ARCH_[N] map for BRBE on arm64 platform
534a2c6:2022-10-17:sync: latest libbpf changes from kernel
7412775:2022-10-12:libbpf: Use elf_getshdrnum() instead of e_shnum
54caf92:2022-10-11:libbpf: Fix use-after-free in btf_dump_name_dups
59080bd:2022-09-14:ci: use CodeQL instead of LGTM
8be13ee:2022-08-12:bpf: Clear up confusion in bpf_skb_adjust_room()'s documentation
c255447:2022-04-06:treewide: uapi: Replace zero-length arrays with flexible-array members
3fa2c28:2022-07-29:sync: latest libbpf changes from kernel
b44b214:2022-07-19:libbpf: fix an snprintf() overflow check
7062757:2022-05-10:libbpf: Clean up ringbuf size adjustment implementation
b319766:2022-05-08:libbpf: Automatically fix up BPF_MAP_TYPE_RINGBUF size, if necessary
ea10235:2022-04-09:ci: point elfutils to a commit where a couple bugs are fixed
f044607:2022-04-07:libbpf: Use strlcpy() in path resolution fallback logic
git://github.com/bats-core/bats-core.git version/1.6.x::1977254c2a7faa2e0af17355856f91dc471d1daa..master::7531b575bb81487553553aecb654c41b237ae96c
b32bd06:2023-07-25:Create SECURITY.md
5d2399a:2023-07-24:[StepSecurity] Apply security best practices
git://github.com/vmware/open-vm-tools.git master::87abba1ce2356fc860eb9d0777d8e9de47427358..stable-12.3.x::1b362b9eb449fb5de3809aaea4a636ece30ee5b7
63f7c79c4:2023-10-17:File descriptor vulnerability in the open-vm-tools vmware-user-suid-wrapperx on Linux
7cb1006b6:2021-12-21:Fix potential integer overflow when calling g_timeout_source_new() or g_timeout_source_new_seconds().
git://github.com/opencv/opencv_contrib.git master::49e8f123ca08e76891856a1ecce491b62d08ba20..4.x::c7602a8f74205e44389bd6a4e8d727d32e7e27b4
e963ec2e:2023-07-10:Wstringop-overflow warning fix in bio inspired module.
cd97cad5:2022-08-08:Use T as temp var type in polyanticlockwise()
badef606:2022-08-08:Remove unused size of get_subbox_chart_physical()
git://github.com/facebook/rocksdb.git 6.20.fb::8608d75d85f8e1b3b64b73a4fb6d19baec61ba5c..9.0.fb::f4441966592636253fd5ab0bb9ed44fc2697fc53
438fc3d9b:2024-01-25:No consistency check when compaction filter is enabled in stress test (#12291)
5eebfaaa0:2024-01-24:Remove extra semi colon from internal_repo_rocksdb/repo/utilities/fault_injection_fs.h (#12279)
a29db3048:2024-01-22:Fix TestGetEntity failure with UDT (#12264)
cad76a2e1:2024-01-16:Fix bug in auto_readahead_size that returned wrong key (#12229)
1de694098:2024-01-05:Fix heap use after free error in FilePrefetchBuffer (#12211)
81b6296c7:2024-01-02:Pass flush IO activity enum in FlushJob::MaybeIncreaseFullHistoryTsLowToAboveCutoffUDT...() (#12197)
d926593df:2023-12-13:Fix stress tests failure for auto_readahead_size (#12131)
2818a74b9:2023-10-31:Initialize merge operator explicitly in PrepareOptionsForRestoredDB() (#12033)
212b5bf82:2023-10-27:Deep-copy Options in restored db for stress test to avoid race with SetOptions() (#12015)
9ded9f789:2023-10-14:Fix db_stress FaultInjectionTestFS set up before DB open (#11958)
d2daa10af:2023-10-11:Fix crash_test_with_best_efforts_recovery (#11938)
20b4f1356:2023-10-11:Enable write fault injection in db_stress (#11924)
cfe0e0b03:2023-09-19:Initialize FaultInjectionTestFS DirectWritable field (#11862)
ba5897ada:2023-09-19:Fix stress test failure due to write fault injections and disable write fault injection (#11859)
20dbf5124:2023-09-18:DB Stress Fix - Commit pending value after checking for status (#11856)
c90807d10:2023-09-18:Inject retryable write IOError when writing to SST files in stress test (#11829)
6997a06c6:2023-09-18:Invalidate threadlocal SV before incrementing `super_version_number_` (#11848)
99f882005:2023-09-15:Fix test on IOActivity check for MultiGetEntity (#11850)
137cd4bb7:2023-09-06:Disable error injection after compaction completion (#11798)
5e0584bd7:2023-08-22:Do not drop unsynced data during reopen in stress test (#11731)
05a1d52e7:2023-06-21:Use FaultInjectionTestFS in transaction_test, clarify Close() APIs (#11499)
66499780b:2023-06-16:Fix error case memory bug in GetHostName() (#11544)
5fc57eec2:2023-05-15:Support parallel read and write/delete to same key in NonBatchedOpsStressTest (#11058)
3622cfa34:2023-04-24:Add back io_uring stress test hack with DbStressFSWrapper for FS not supporting read async (#11404)
6cac4c79d:2023-04-20:Fix race condition in db_stress checkpoint cleanup (#11389)
11cb6af6e:2023-03-14:Fix bug of prematurely excluded CF in atomic flush contains unflushed data that should've been included in the atomic flush (#11148)
7a07afe82:2023-03-09:DBWithTTLImpl::IsStale overflow when ttl is 15 years (#11279)
e168c1b1a:2023-03-05:Use FaultInjectionTestFS in DBWriteTest.LockWALInEffect (#11271)
3cacd4b4e:2023-02-09:Put Cache and CacheWrapper in new public header (#11192)
27cf09172:2023-02-03:Fix compile gettid on older Linux (#11184)
dcf93b7b3:2023-01-26:Bump commonmarker from 0.23.6 to 0.23.7 in /docs (#11128)
e9d6a0d7c:2023-01-18:Fix asan failure caused by range tombstone start key use-after-free (#11106)
b965a5a80:2023-01-03:Add back Options::CompactionOptionsFIFO::allow_compaction to stress/crash test (#11063)
c3f720c60:2022-12-15:Enable ReadAsync testing and fault injection in db_stress (#11037)
6648dec0a:2022-12-08:Bump nokogiri from 1.13.9 to 1.13.10 in /docs (#11024)
d8c043f7a:2022-11-28:Trigger FIFO file deletion in non L0 only if exceeding max_table_files_size (#10955)
0993c9225:2022-11-14:Fix broken dependency: update zlib from 1.2.12 to 1.2.13 (#10833)
fc74abb43:2022-10-25:Fix FIFO causing overlapping seqnos in L0 files due to overlapped seqnos between ingested files and memtable's (#10777)
2564215e3:2022-10-20:Bump nokogiri from 1.13.6 to 1.13.9 in /docs (#10842)
e466173d5:2022-10-18:Print stack traces on frozen tests in CI (#10828)
626eaa418:2022-10-04:ci: add GitHub token permissions for workflow (#10549)
aed30ddf2:2022-09-26:Support WriteCommit policy with sync_fault_injection=1 (#10624)
80d010a5e:2022-09-22:Bump commonmarker from 0.23.4 to 0.23.6 in /docs (#10722)
f79b3d19a:2022-09-12:Inject spurious wakeup and sleep before acquiring db mutex to expose race condition (#10291)
ccf822492:2022-08-31:Reenable sync_fault_injection in crash test (#10172)
e7525a1ff:2022-08-31:Disable use_txn=1 with sync_fault_injection=1 in db_crashtest.py (#10605)
e484b81ee:2022-08-29:Sync dir containing CURRENT after RenameFile on CURRENT as much as possible (#10573)
d95e37636:2022-08-24:Disable db_stress features incompatible with unsynced data dropping when sync_fault_injection=1 (#10559)
b16655a54:2022-08-22:Add missing synchronization in TestFSWritableFile (#10544)
13cb7a84b:2022-08-18:Fix the memory leak in db_stress tests that are caused by `FaultInjectionSecondaryCache` and add `CompressedSecondaryCache` into stress tests. (#10523)
b57155a0b:2022-08-09:Revert "Add CompressedSecondaryCache into stress test" #10442 (#10509)
944ace8f7:2022-07-22:Bump tzinfo from 1.2.9 to 1.2.10 in /docs (#10400)
b443d24f4:2022-07-19:Stop operating on DB in a stress test background thread (#10373)
d5d8920f2:2022-06-17:Fix race condition with WAL tracking and `FlushWAL(true /* sync */)` (#10185)
f87adcfb3:2022-06-17:Fix overflow in ribbon_bench after #10184 (#10195)
2af132c34:2022-06-06:Fix overflow bug in standard deviation computation. (#10100)
6255ac722:2022-05-20:Bump nokogiri from 1.13.4 to 1.13.6 in /docs (#10019)
e943bbdd2:2022-05-11:Temporarily disable sync_fault_injection (#9979)
00889cf8f:2022-05-06:Never use String#getBytes() in the production code (#9487)
62d84e2a2:2022-05-06:db_stress fault injection in release mode (#9957)
a62506aee:2022-05-05:Enable unsynced data loss in crash test (#9947)
fce65e7e4:2022-04-27:Fix bug in async_io path which reads incorrect length (#9916)
9d0cae710:2022-04-26:Eliminate unnecessary (slow) block cache Ref()ing in MultiGet (#9899)
0b81efed1:2022-04-12:Bump nokogiri from 1.13.3 to 1.13.4 in /docs (#9831)
f3bcac39a:2022-04-11:Fix stress test failure in ReadAsync. (#9824)
04623e7cd:2022-04-05:Fix GetMergeOperands() heap-use-after-free on flushed memtable (#9805)
5dbdb197f:2022-03-29:Fix broken zlib dependency, update it from 1.2.11 to 1.2.12 (#9764)
b83263bbe:2022-03-25:jni: uniformly use GetByteArrayRegion() to copy bytes (#9380)
cad809978:2022-03-24:Fix heap use-after-free race with DropColumnFamily (#9730)
785b804a9:2022-03-07:Update Githubpages version (#9670)
9e9e3d16b:2022-03-01:Bump nokogiri from 1.12.5 to 1.13.3 in /docs (#9636)
0a89cea5f:2022-02-28:Handle failures in block-based table size/offset approximation (#9615)
5d30668ca:2022-01-24:Remove tools/rdb from main repo (#9399)
aa2b3bf67:2021-12-28:Added `TraceOptions::preserve_write_order` (#9334)
2ee20a669:2021-12-28:Extend trace filtering to more operation types (#9335)
dfff1cecf:2021-12-22:Filter `Get()`s from `db_stress` traces (#9315)
791723c1e:2021-12-20:Fix race condition in db_stress thread setup (#9314)
863c78d2c:2021-12-17:Fix unsynced data loss correctness test with mixed `-test_batches_snapshots` (#9302)
84228e21e:2021-12-17:Fix shutdown in db_stress with `-test_batches_snapshots=1` (#9313)
c9818b332:2021-12-15:db_stress verify with lost unsynced operations (#8966)
08721293e:2021-12-13:Fix a bug causing duplicate trailing entries in WritableFile (buffered IO) (#9236)
a6a6aad74:2021-12-07:db_stress support tracking historical values (#8960)
c9539ede7:2021-11-17:Fix integer overflow in TraceOptions (#9157)
dddb791c1:2021-11-08:Enable a few unit tests to use custom Env objects (#9087)
78556c14d:2021-11-08:Secondary cache error injection (#9002)
b1c27a52d:2021-11-01:Add a consistency check that prevents the overflow of garbage in blob files (#9100)
5bf9a7d5e:2021-10-27:Clarify caching behavior for index and filter partitions (#9068)
a282eff3d:2021-10-11:Protect existing files in `FaultInjectionTest{Env,FS}::ReopenWritableFile()` (#8995)
345f4c946:2021-09-27:Bump nokogiri from 1.11.4 to 1.12.5 in /docs (#8965)
7c6a7e8fa:2021-09-23:FaultInjectionTestFS::InjectThreadSpecificReadError() should not corrupt mmaped bytes (#8952)
932006770:2021-09-21:Improve fault injection to MultiRead (#8937)
4f1dd05ce:2021-09-16:Implement TestFSRandomAccessFile::MultiRead() (#8925)
0ef88538c:2021-09-07:Improve support for using regexes (#8740)
052c24a66:2021-08-07:Fix db_stress failure (#8632)
c268859aa:2021-08-04:Remove corruption error injection in FaultInjectionTestFS (#8616)
b27815226:2021-08-02:Fix db stress crash mempurge (#8604)
74b7c0d24:2021-07-27:Fix use-after-free on implicit temporary FileOptions (#8571)
7b9ecd406:2021-07-13:fix several MSVC build errors (#8519)
e8e911a11:2021-07-12:Bump addressable from 2.7.0 to 2.8.0 in /docs (#8515)
b1a53db32:2021-07-07:FaultInjectionTestFS::DeleteFilesCreatedAfterLastDirSync() to recover… (#8501)
fcd808833:2021-07-06:Temporarily disable file deletion after open failure in db_stress (#8489)
f76326e37:2021-05-20:Bump nokogiri from 1.11.1 to 1.11.4 in /docs (#8318)
242ac6c17:2021-05-07:Bump rexml from 3.2.4 to 3.2.5 in /docs (#8251)
7f3a0f5bc:2021-05-05:db_stress: wait for compaction to finish after open with failure injection (#8270)
3b981eaa1:2021-05-04:Fix use-after-free threading bug in ClockCache (#8261)
git://github.com/glfw/glfw.git master::781fbbadb0bccc749058177b1385c82da9ace880..3.3-stable::7482de6071d21db77a7236155da44c172a7f6c9e
22f718dc:2022-03-22:Wayland: Fix handling of clipboard set to self
0b56adb7:2020-10-07:Remove ignored Clang compiler flag
git://github.com/jemalloc/jemalloc.git master::ea6b3e973b477b8061e0076bb257dbd7f3faa756..dev::630434bb0ac619f7beec927569782d924c459385
ed5fc14b:2022-03-23:Use volatile to workaround buffer overflow false positives.
20f9802e:2022-01-26:Avoid overflow warnings in test/unit/safety_check.
d660683d:2021-12-30:Fix test config of lg_san_uaf_align.
b75822bc:2021-10-18:Implement use-after-free detection using junk and stash.
34b00f89:2021-10-22:San: Avoid running san tests with prof enabled
caef4c28:2020-12-08:FXP: add fxp_mul_frac.
22bc75ee:2019-08-27:Workaround the stringop-overflow check false positives.
git://gitlab.freedesktop.org/pipewire/pipewire.git master::64cf5e80e6240284e6b757907b900507fe56f1b5..1.0::467fd4a02e37f93a8d27448eef548e247f020466
3c9bd37fa:2024-05-16:acp: handle some errors better
6ee9e6278:2024-05-18:spa: fix integer overflows etc. in spa_pod_compare_value
c649f4a32:2024-03-07:pw-top: only check terminal size in non-batch mode
c4cd8fa73:2023-11-23:impl-client: don't log warning when updating ignored keys
f0e8b95d7:2023-06-09:module-netjack2: do some more checks
4c48c7e7b:2023-05-12:module-roc-source: make sure we don't overflow target_latency
4e298f2fe:2023-02-22:pipewire: add pw_random()
5e0bfa0be:2023-02-07:RLIMITs: add support for generating limits.d files
1d9640af5:2023-01-16:spa: Fix audioconvert overflow when scaling
e0c9f87d7:2022-11-13:bluez5: backend-native: prevent string overflow
f801dc088:2022-11-02:pulse-server: keep read index in sync
1e848fc29:2022-07-30:SPA POD parser: fix several integer overflows
fea248d45:2022-08-29:SPA POD parser: Fix bug when parsing choice types
7bf84fa5e:2022-09-20:pod: only call the overflow callback when still needed
c0e8b397f:2022-08-23:bluez5: avoid (harmless) integer overflow
b8a4bf880:2022-07-07:audioconvert: use 24 bits for 32 formats
938f2b123:2022-06-29:audioconvert: improve format conversion
b7e26002b:2022-06-28:audiocovert: improve dither setup
0f45d784d:2022-06-20:pulse-server: update client::name on UPDATE_CLIENT_PROPLIST command
c8c2526f8:2022-06-09:pulse-server: destroy modules first
f2c53622d:2022-06-03:pipewire-jack: use `jack_client_close()` to free client in error path
970b5906a:2022-05-16:pipewire: module-spa-node-factory: remove resource listener when node is destroyed
cdbdcd677:2022-04-19:module-pulse-tunnel: improve error recovery
git://gitlab.freedesktop.org/geoclue/geoclue.git None::3bb60dd600a8b247fd6049e7e5b1c73c2c5fc0e8..master::8a24f60969d4c235d9918796c38a6a9c42e10131
3610c13:2022-10-05:wifi: Cancellation fixes
git://github.com/KhronosGroup/SPIRV-Cross.git master::ed16b3e69985feaf565efbecea70a1cc2fca2a58..main::f09ba2777714871bddb70d049878af34b94fa54d
99f86138:2022-06-21:Fix compilation errors with deprecated sprintf function
439b6668:2020-10-30:GLSL: Fix nonuniformEXT injection.
eaf7afed:2019-05-09:MSL: Support argument buffers and image swizzling.
git://github.com/pocoproject/poco.git main::9d1c428c861f2e5ccf09149bbe8d2149720c5896..poco-1.12.5::1d6fb3e1383e559cacbada5e3f861c0dafaf5d30
62f875dfe:2023-12-04:#4320: Integer overflow in Poco::UTF32Encoding
8acc16d93:2023-10-16:fix(FileChannel): setRotation overflow #3786
85e8b8906:2022-07-08:Release 1.12.0 (#3676)
4ba8595ed:2022-07-08:Release 1.12.0 (#3674)
f70101cb0:2022-07-08:devel-release-1.12.0 (#3673)
284a14143:2022-06-22:fix(strToInt): overflows #3580
283321a11:2022-06-20:fix warning C4717: 'format<std::vector<std::any,std::allocatorstd::an… (#3640)
7852153db:2022-05-15:Devel (#3586)
d294391c9:2022-05-04:Dev/devel 1.12.0 (#3585)