From owner-svn-doc-head@FreeBSD.ORG Thu Feb 5 19:34:03 2015 Return-Path: Delivered-To: svn-doc-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 281135E2; Thu, 5 Feb 2015 19:34:03 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 0E75ADF3; Thu, 5 Feb 2015 19:34:03 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.9/8.14.9) with ESMTP id t15JY3NG003516; Thu, 5 Feb 2015 19:34:03 GMT (envelope-from gjb@FreeBSD.org) Received: (from gjb@localhost) by svn.freebsd.org (8.14.9/8.14.9/Submit) id t15JY2lO003511; Thu, 5 Feb 2015 19:34:02 GMT (envelope-from gjb@FreeBSD.org) Message-Id: <201502051934.t15JY2lO003511@svn.freebsd.org> X-Authentication-Warning: svn.freebsd.org: gjb set sender to gjb@FreeBSD.org using -f From: Glen Barber Date: Thu, 5 Feb 2015 19:34:02 +0000 (UTC) To: doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org Subject: svn commit: r46258 - in head/en_US.ISO8859-1/htdocs/releases: 8.4R 9.3R X-SVN-Group: doc-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-doc-head@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: SVN commit messages for the doc tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Feb 2015 19:34:03 -0000 Author: gjb Date: Thu Feb 5 19:34:02 2015 New Revision: 46258 URL: https://svnweb.freebsd.org/changeset/doc/46258 Log: Regen after r278275 Sponsored by: The FreeBSD Foundation Modified: head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html head/en_US.ISO8859-1/htdocs/releases/9.3R/errata.html Modified: head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html ============================================================================== --- head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html Thu Feb 5 19:15:40 2015 (r46257) +++ head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html Thu Feb 5 19:34:02 2015 (r46258) @@ -1,5 +1,5 @@ -FreeBSD 8.4-RELEASE Errata

FreeBSD 8.4-RELEASE Errata

+FreeBSD 8.4-RELEASE Errata

FreeBSD 8.4-RELEASE Errata

The FreeBSD Project

Copyright © 2015 The FreeBSD Documentation Project

FreeBSD is a registered trademark of the FreeBSD Foundation.

Intel, Celeron, Centrino, Core, EtherExpress, i386, @@ -38,48 +38,48 @@ the snapshot).

For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

2. Security Advisories

Problems described in the following security advisories have been fixed in 8.4-RELEASE. For more information, consult the individual advisories available from - http://security.FreeBSD.org/.

AdvisoryDateTopic
FreeBSD-SA-13:07.bind26 July 2013

Denial of Service vulnerability in - named(8)

FreeBSD-SA-13:09.ip_multicast21 August 2013

Integer overflow in computing the size of + http://security.FreeBSD.org/.

AdvisoryDateTopic
FreeBSD-SA-13:07.bind26 July 2013

Denial of Service vulnerability in + named(8)

FreeBSD-SA-13:09.ip_multicast21 August 2013

Integer overflow in computing the size of a temporary buffer can result in a buffer which is too - small for the requested operation

FreeBSD-SA-13:10.sctp21 August 2013

Fix a bug that could lead to kernel memory - disclosure with SCTP state cookie

FreeBSD-SA-13:12.ifioctl10 September 2013

In IPv6 and NetATM, stop + small for the requested operation

FreeBSD-SA-13:10.sctp21 August 2013

Fix a bug that could lead to kernel memory + disclosure with SCTP state cookie

FreeBSD-SA-13:12.ifioctl10 September 2013

In IPv6 and NetATM, stop SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR and SIOCSIFNETMASK at the socket layer rather than pass them on to the link layer without - validation or credential checks

FreeBSD-SA-13:13.nullfs10 September 2013

Prevent cross-mount hardlinks between different + validation or credential checks

FreeBSD-SA-13:13.nullfs10 September 2013

Prevent cross-mount hardlinks between different nullfs mounts of the same underlying - filesystem

FreeBSD-SA-14:01.bsnmpd14 January 2014

bsnmpd remote denial of service - vulnerability

FreeBSD-SA-14:02.ntpd14 January 2014

ntpd distributed reflection Denial of Service - vulnerability

FreeBSD-SA-14:04.bind14 January 2014

BIND remote denial of service - vulnerability

FreeBSD-SA-14:05.nfsserver8 April 2014

NFS deadlock vulnerability

FreeBSD-SA-14:06.openssl8 April 2014

ECDSA Cache Side-channel Attack in - OpenSSL

FreeBSD-SA-14:08.tcp30 April 2014

TCP reassembly vulnerability

FreeBSD-SA-14:11.sendmail5 June 2014

sendmail improper close-on-exec flag - handling

FreeBSD-SA-14:12.ktrace5 June 2014

ktrace memory disclosure

FreeBSD-SA-14:14.openssl5 June 2014

OpenSSL multiple vulnerabilities

FreeBSD-SA-14:16.file5 June 2014

Multiple vulnerabilities in file(1) and - libmagic(3)

FreeBSD-SA-14:17.kmem8 July 2014

kernel memory disclosure in control message and - SCTP notifications

FreeBSD-SA-14:18.openssl9 September 2014

Multiple vulnerabilities in - OpenSSL

FreeBSD-SA-14:19.tcp16 September 2014

Denial of Service in TCP packet - processing

FreeBSD-SA-14:21.routed21 October 2014

routed(8) denial of service - vulnerability

FreeBSD-SA-14:23.openssl21 October 2014

Multiple vulnerabilities in - OpenSSL

FreeBSD-SA-14:25.setlogin4 November 2014

kernel stack disclosure in setlogin(2) and - getlogin(2)

FreeBSD-SA-14:26.ftp4 November 2014

Remote command execution in - ftp(1)

FreeBSD-SA-14:28.file10 December 2014

Multiple vulnerabilities in file(1) and - libmagic(3)

FreeBSD-SA-14:29.bind10 December 2014

BIND remote denial of service - vulnerability

FreeBSD-SA-14:31.ntp23 December 2014

Multiple vulnerabilities in NTP - suite

FreeBSD-SA-15:01.ntp14 January 2015

Multiple vulnerabilities in - OpenSSL

FreeBSD-SA-15:02.kmem27 January 2015

Fix SCTP SCTP_SS_VALUE kernel memory corruption - and disclosure vulnerability

FreeBSD-SA-15:03.sctp27 January 2015

Fix SCTP stream reset - vulnerability

3. Errata Notices

ErrataDateTopic
FreeBSD-EN-13:01.fxp28 June 2013

Fixed a problem where dhclient(8) would - infinitely try to intialize fxp(4)

FreeBSD-EN-13:02.vtnet28 June 2013

Fixed a problem frames sent to additional MAC + filesystem

FreeBSD-SA-14:01.bsnmpd14 January 2014

bsnmpd remote denial of service + vulnerability

FreeBSD-SA-14:02.ntpd14 January 2014

ntpd distributed reflection Denial of Service + vulnerability

FreeBSD-SA-14:04.bind14 January 2014

BIND remote denial of service + vulnerability

FreeBSD-SA-14:05.nfsserver8 April 2014

NFS deadlock vulnerability

FreeBSD-SA-14:06.openssl8 April 2014

ECDSA Cache Side-channel Attack in + OpenSSL

FreeBSD-SA-14:08.tcp30 April 2014

TCP reassembly vulnerability

FreeBSD-SA-14:11.sendmail5 June 2014

sendmail improper close-on-exec flag + handling

FreeBSD-SA-14:12.ktrace5 June 2014

ktrace memory disclosure

FreeBSD-SA-14:14.openssl5 June 2014

OpenSSL multiple vulnerabilities

FreeBSD-SA-14:16.file5 June 2014

Multiple vulnerabilities in file(1) and + libmagic(3)

FreeBSD-SA-14:17.kmem8 July 2014

kernel memory disclosure in control message and + SCTP notifications

FreeBSD-SA-14:18.openssl9 September 2014

Multiple vulnerabilities in + OpenSSL

FreeBSD-SA-14:19.tcp16 September 2014

Denial of Service in TCP packet + processing

FreeBSD-SA-14:21.routed21 October 2014

routed(8) denial of service + vulnerability

FreeBSD-SA-14:23.openssl21 October 2014

Multiple vulnerabilities in + OpenSSL

FreeBSD-SA-14:25.setlogin4 November 2014

kernel stack disclosure in setlogin(2) and + getlogin(2)

FreeBSD-SA-14:26.ftp4 November 2014

Remote command execution in + ftp(1)

FreeBSD-SA-14:28.file10 December 2014

Multiple vulnerabilities in file(1) and + libmagic(3)

FreeBSD-SA-14:29.bind10 December 2014

BIND remote denial of service + vulnerability

FreeBSD-SA-14:31.ntp23 December 2014

Multiple vulnerabilities in NTP + suite

FreeBSD-SA-15:01.ntp14 January 2015

Multiple vulnerabilities in + OpenSSL

FreeBSD-SA-15:02.kmem27 January 2015

Fix SCTP SCTP_SS_VALUE kernel memory corruption + and disclosure vulnerability

FreeBSD-SA-15:03.sctp27 January 2015

Fix SCTP stream reset + vulnerability

3. Errata Notices

ErrataDateTopic
FreeBSD-EN-13:01.fxp28 June 2013

Fixed a problem where dhclient(8) would + infinitely try to intialize fxp(4)

FreeBSD-EN-13:02.vtnet28 June 2013

Fixed a problem frames sent to additional MAC addresses are not forwarded to the vtnet(4) - interface

FreeBSD-EN-13:04.freebsd-update26 October 2013

Multiple fixes

FreeBSD-EN-13:05.freebsd-update28 November 2013

Fix INDEX generation

FreeBSD-EN-14:01.random14 January 2014

Disable hardware RNGs by default

FreeBSD-EN-14:02.mmap14 January 2014

Fix incorrect coalescing of stack - entry

FreeBSD-EN-14:03.pkg15 May 2014

Add pkg bootstrapping, configuration and public - keys

FreeBSD-EN-14:04.kldxref15 May 2014

Improve build repeatability for - kldxref(8)

FreeBSD-EN-14:06.exec3 June 2014

Fix triple-fault when executing from a threaded - process

FreeBSD-EN-14:08.heimdal24 June 2014

Fix gss_pseudo_random() - interoperability issue

FreeBSD-EN-14:09.jail8 July 2014

Fix jail fails to start if - WITHOUT_INET/WITHOUT_INET6 is use

FreeBSD-EN-14:10.tzdata21 October 2014

Time zone data file update

FreeBSD-EN-14:12.zfs4 November 2014

Fix NFSv4 and ZFS cache consistency - issue

FreeBSD-EN-14:13.freebsd-update23 December 2014

Fix directory deletion issue

4. Open Issues

[20130613] The vtnet(4) network interface driver + interface

FreeBSD-EN-13:04.freebsd-update26 October 2013

Multiple fixes

FreeBSD-EN-13:05.freebsd-update28 November 2013

Fix INDEX generation

FreeBSD-EN-14:01.random14 January 2014

Disable hardware RNGs by default

FreeBSD-EN-14:02.mmap14 January 2014

Fix incorrect coalescing of stack + entry

FreeBSD-EN-14:03.pkg15 May 2014

Add pkg bootstrapping, configuration and public + keys

FreeBSD-EN-14:04.kldxref15 May 2014

Improve build repeatability for + kldxref(8)

FreeBSD-EN-14:06.exec3 June 2014

Fix triple-fault when executing from a threaded + process

FreeBSD-EN-14:08.heimdal24 June 2014

Fix gss_pseudo_random() + interoperability issue

FreeBSD-EN-14:09.jail8 July 2014

Fix jail fails to start if + WITHOUT_INET/WITHOUT_INET6 is use

FreeBSD-EN-14:10.tzdata21 October 2014

Time zone data file update

FreeBSD-EN-14:12.zfs4 November 2014

Fix NFSv4 and ZFS cache consistency + issue

FreeBSD-EN-14:13.freebsd-update23 December 2014

Fix directory deletion issue

4. Open Issues

[20130613] The vtnet(4) network interface driver displays the following message upon configuration when using QEMU 1.4.1 and later:

vtnet0: error setting host MAC filter table

This message is harmless when the interface has only one MAC address. The patch for this issue is filed to a PR kern/178955.

[20130609] There is incompatibility in jail(8) Modified: head/en_US.ISO8859-1/htdocs/releases/9.3R/errata.html ============================================================================== --- head/en_US.ISO8859-1/htdocs/releases/9.3R/errata.html Thu Feb 5 19:15:40 2015 (r46257) +++ head/en_US.ISO8859-1/htdocs/releases/9.3R/errata.html Thu Feb 5 19:34:02 2015 (r46258) @@ -1,5 +1,5 @@ -FreeBSD 9.3-RELEASE Errata

FreeBSD 9.3-RELEASE Errata

+FreeBSD 9.3-RELEASE Errata

FreeBSD 9.3-RELEASE Errata

The FreeBSD Project

Copyright © 2015 The FreeBSD Documentation Project

FreeBSD is a registered trademark of the FreeBSD Foundation.

Intel, Celeron, Centrino, Core, EtherExpress, i386, @@ -38,19 +38,19 @@ the snapshot).

For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

2. Security Advisories

Problems described in the following security advisories have been fixed in 9.3-RELEASE. For more information, consult the individual advisories available from - http://security.FreeBSD.org/.

AdvisoryDateTopic
FreeBSD-SA-14:18.openssl9 September 2014

Multiple vulnerabilities

FreeBSD-SA-14:19.tcp16 September 2014

Denial of Service in TCP packet - processing.

FreeBSD-SA-14:20.rtsold21 October 2014

Remote buffer overflow - vulnerability.

FreeBSD-SA-14:21.routed21 October 2014

Remote denial of service - vulnerability.

FreeBSD-SA-14:22.namei21 October 2014

Memory leak in sandboxed namei - lookup.

FreeBSD-SA-14:23.openssl21 October 2014

Multiple vulerabilities.

FreeBSD-SA-14:25.setlogin04 November 2014

Kernel stack disclosure.

FreeBSD-SA-14:26.ftp04 November 2014

Remote code execution.

FreeBSD-SA-14:28.file10 December 2014

Multiple vulnerabilities in file(1) and - libmagic(3)

FreeBSD-SA-14:29.bind10 December 2014

Remote denial of service - vulnerability

FreeBSD-SA-14:31.ntp23 December 2014

Multiple vulnerabilities

FreeBSD-SA-15:01.openssl14 January 2015

Multiple vulnerabilities

FreeBSD-SA-15:02.kmem27 January 2015

SCTP kernel memory corruption and - disclosure vulnerability

FreeBSD-SA-15:03.sctp27 January 2015

SCTP stream reset - vulnerability

3. Errata Notices

ErrataDateTopic
FreeBSD-EN-14:10.tzdata21 October 2014

Time zone data file update

FreeBSD-EN-14:11.crypt21 October 2014

Change crypt(3) default hashing algorithm - back to DES

FreeBSD-EN-14:12.zfs11 November 2014

Fix NFSv4 and ZFS cache consistency - issue

FreeBSD-EN-14:13.freebsd-update23 December 2014

Fixed directory deletion issue in + http://security.FreeBSD.org/.

AdvisoryDateTopic
FreeBSD-SA-14:18.openssl9 September 2014

Multiple vulnerabilities

FreeBSD-SA-14:19.tcp16 September 2014

Denial of Service in TCP packet + processing.

FreeBSD-SA-14:20.rtsold21 October 2014

Remote buffer overflow + vulnerability.

FreeBSD-SA-14:21.routed21 October 2014

Remote denial of service + vulnerability.

FreeBSD-SA-14:22.namei21 October 2014

Memory leak in sandboxed namei + lookup.

FreeBSD-SA-14:23.openssl21 October 2014

Multiple vulerabilities.

FreeBSD-SA-14:25.setlogin04 November 2014

Kernel stack disclosure.

FreeBSD-SA-14:26.ftp04 November 2014

Remote code execution.

FreeBSD-SA-14:28.file10 December 2014< /td>

Multiple vulnerabilities in file(1) and + libmagic(3)

FreeBSD-SA-14:29.bind10 December 2014

Remote denial of service + vulnerability

FreeBSD-SA-14:31.ntp23 December 2014

Multiple vulnerabilities

FreeBSD-SA-15:01.openssl14 January 2015

Multiple vulnerabilities

FreeBSD-SA-15:02.kmem27 January 2015

SCTP kernel memory corruption and + disclosure vulnerability

FreeBSD-SA-15:03.sctp27 January 2015

SCTP stream reset + vulnerability

3. Errata Notices

ErrataDateTopic
FreeBSD-EN-14:10.tzdata21 October 2014

Time zone data file update

FreeBSD-EN-14:11.crypt21 October 2014

Change crypt(3) default hashing algorithm + back to DES

FreeBSD-EN-14:12.zfs11 November 2014

Fix NFSv4 and ZFS cache consistency + issue

FreeBSD-EN-14:13.freebsd-update23 December 2014

Fixed directory deletion issue in freebsd-update(8)

4. Late-Breaking News

No late-breaking news.

This file, and other release-related documents, - can be downloaded from http://www.FreeBSD.org/releases/.

For questions about FreeBSD, read the + can be downloaded from https://www.FreeBSD.org/releases/.

For questions about FreeBSD, read the documentation before contacting <questions@FreeBSD.org>.

All users of FreeBSD 9.3-STABLE should subscribe to the <stable@FreeBSD.org>