Major Changes Between 6.0 and 6.0.1

The complete list of changes can be found in the CHANGES-6.0.1 file in the top level directory of the NetBSD 6.0.1 release tree. An abbreviated list is as follows:

Security Fixes

• expat: Fix CVE-2012-1147, CVE-2012-1148 and CVE-2012-0876.
• BIND: Address CVE-2012-5688: Named could die on specific queries with dns64 enabled.

• posix_spawn(): Fix processes with attributes.
• Resolve races between vget() and vrele() resulting in vget() returning dead vnodes.
• Prevent crash when unsupported fd's are used with kevent.

• Fix "atomic fragments" for IPv6.
• ipf: Fix alignment issues in ipmon. (PR#47101)
• npf: handle delayed checksums in the network stack. (PR#47235)

smbfs: Make smbfs actually work on big-endian ports.

• ciss(4): don't try to handle sensors if there aren't any.

• x86 (i386, amd64): Work around a possible gcc bug generating bad assembler code. (PR#45673) Disable C1E on AMD K8 CPUs, to prevent freeze during boot.
• xen: Prevent a memory corruption issue that locks up a Xen DomU, and can potentially cause file system corruption. (PR#47056, PR#47057) Fix: Xen Dom0 NetBSD kernel could crash by adding duplicate xenwatches.

• Update to tzdata2012j.
• cdb: don't refuse to open databases without entries or keys.
• Address graphics corruption in recent Cairo, manifested most commonly by certain rendered text sections appearing as solid rectangular blocks of color.