FreeBSD Mail Archives

Date:      Wed, 12 Jul 2017 15:11:38 +0000 (UTC)
From:      Xin LI <delphij@FreeBSD.org>
To:        doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org
Subject:   svn commit: r50476 - head/share/security/advisories
Message-ID:  <201707121511.v6CFBc7K033429@repo.freebsd.org>

next in thread | raw e-mail | index | archive | help

Author: delphij
Date: Wed Jul 12 15:11:38 2017
New Revision: 50476
URL: https://svnweb.freebsd.org/changeset/doc/50476

Log:
  Wordsmithing from gjb@

Modified:
  head/share/security/advisories/FreeBSD-EN-17:06.hyperv.asc
  head/share/security/advisories/FreeBSD-SA-17:05.heimdal.asc

Modified: head/share/security/advisories/FreeBSD-EN-17:06.hyperv.asc
==============================================================================
--- head/share/security/advisories/FreeBSD-EN-17:06.hyperv.asc	Wed Jul 12 08:31:16 2017	(r50475)
+++ head/share/security/advisories/FreeBSD-EN-17:06.hyperv.asc	Wed Jul 12 15:11:38 2017	(r50476)
@@ -23,19 +23,19 @@ branches, and the following sections, please visit
 I.   Background
 
 Hyper-V is a default hypervisor provided on Windows server by Microsoft.
-ATA driver is the legacy storage driver for FreeBSD on Hyperv, now they
-are replaced by synthetic driver which has better performance.
+The ATA driver is the legacy storage driver for FreeBSD on Hyperv; now they
+are replaced by a synthetic driver which has better performance.
 
-There are issues when attaching multiple synthetic storage driver for
+There are issues when attaching multiple synthetic storage drivers for
 FreeBSD 10.3 on some of Hyper-V hosts.
 
-CD/DVD cannot be detected in some circumstances which cause provisioning
+The CD/DVD cannot be detected in some circumstances which causes provisioning
 fail on Azure.
 
 II.  Problem Description
 
 The disk INQUIRY response is not complete for FreeBSD 10.3 on some
-Hyper-V hosts, which will cause the disks will be detached during boot.
+Hyper-V hosts, which will cause the disks to be detached during boot.
 
 An interrupt is missing if we allow intr_shuffle_irqs on Hyper-V.
 
@@ -45,7 +45,8 @@ FreeBSD 10.3 can not be boot properly on a guest syste
 
 IV.  Workaround
 
-No workaround is available.
+No workaround is available, however systems not running within Hyper-V or
+Azure are unaffected.
 
 V.   Solution
 
@@ -117,17 +118,17 @@ The latest revision of this advisory is available at
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v2.1.21 (FreeBSD)
 
-iQIzBAEBCgAdFiEEHPf/b631yp++G4yy7Wfs1l3PaucFAlll2psACgkQ7Wfs1l3P
-audtKRAA2OiRehFvElfsMARX+nBZazgKUGXfFRmWO8v8MCpI9jQtB9T8HItDWVHh
-ZPbgM/AV3osUAmzdZOFwTpHbVbPQ8nO14n5inhC9u0J0wA0c5apfp54F2EXdgm6+
-+ckf+2lkisBI1YVewH8aPRNSIhueRJPEX79g7Z/EqxHJhq1wfGaJ6zDT8royE1F8
-q8uyawClGL1vS7ofW4IPVYQOgebf+s7vSF845JWQcqXeqpPU6Qt1kGP+wkTSx7HE
-3tuRowym5EmzweP+U5DqE34Ryli7/jsDr0rgmVkVh5JEQfHznSadAAWsHj9bMimc
-4Y2TSYdOhrPKV6Id/el5XWTSetUVPHMmQh6TTIWg10Ygr6CK0folZWnR5t2ym4np
-HfzEdaUXJXZyj/5qy1mcFzR8JRifj9lmlRzBqZOOOwMakhSSYD7daouLK76SvH0K
-gf4AgG0X6FUETD8N+rM+1RpvSfbeA9zktcPmxE/WCTtc8lIcQc/9CZY7zNOoi+du
-LKU1MhWBQTk8zP5AHzAmHL+O+C6sF7uYVaUL6Ui3hqq2AjhnK+sxVX1QNT4kwgJ4
-h3sBliNUQ6kz1e2yTROj2v66OkFKYaSugLwyg15Qa6pfE7R448lCwZOe65rYYTyZ
-u4yd5mACaO9mkYmQulxIO/Eit19kGvapBXF4CEHBt+WvqG8Cbdk=
-=a6m2
+iQIzBAEBCgAdFiEEHPf/b631yp++G4yy7Wfs1l3PaucFAllmPAEACgkQ7Wfs1l3P
+aucYWA/+MnvacneOAPWlxl5EoZClil8fFLfXvnWocUOxrdKEFdCDR4Kro/a4BvUz
+gyj6H5sKvM1j3laRZGsUDrK8iQyBwtYSmanCZvRHNau7OHNqy2gbbJaeDN6APy/j
+Jyp+GrIQa+o3+m15VuC8gZzbobNkdGwp7IS4gBDRC/u804Rij+DG0RMiUF0uZhxX
+n2JPTmsAKUls1o2H+02gLseDaNGMHkFGv9vGp4s9L6RZHLLcSrw9gYwLZYCb0tFE
+OyJzpZSSzvXjMprjAD+Ay2CIR2WHSqaxfs2jK4pqwbZnE9mIsW6wm+4FaH+ZLbzO
+KeMgP9f6T4WByQQEw66fSYufepC4qVDZnmeRwNph6nvv3bgqlpueceq5M+pZMM7k
+UvEH7I2nNfpAvtM5uzFOqyNNMuMwkLcLm10o/3AXumLKAL2Co5xsiViotryhB/mb
+XP3l9zvt6uwIlYwOJ0r2i0bbtGrtUZml74iBJU5Wu4ItztWOeCRJCosk+dbc2YZW
+uYOGwopo5n0SzypWG3CdZpSlhrvKwJrlEFLK6pHXYzC4gL8Wlqw8b/OMeu/yCvH8
+MLRsitGiRK5sSSAitLjDqfRbxULq0o5F2K/OKRZw3LHL2m0Z+HNI0B68RTfhXp5U
+w3QQk20/7A2Au5Tgv9ihmCE7C7TdOYyNaN6n974kZUfaH6ggsmY=
+=ycJf
 -----END PGP SIGNATURE-----

Modified: head/share/security/advisories/FreeBSD-SA-17:05.heimdal.asc
==============================================================================
--- head/share/security/advisories/FreeBSD-SA-17:05.heimdal.asc	Wed Jul 12 08:31:16 2017	(r50475)
+++ head/share/security/advisories/FreeBSD-SA-17:05.heimdal.asc	Wed Jul 12 15:11:38 2017	(r50476)
@@ -27,7 +27,7 @@ following sections, please visit <URL:https://security
 I.   Background
 
 Heimdal implements the Kerberos 5 network authentication protocols.
-The Kerberos protocol uses "ticket" to authenticate a client to a
+The Kerberos protocol uses "tickets" to authenticate a client to a
 service.
 
 A Key Distribution Center (KDC) is trusted by all principals registered
@@ -35,16 +35,15 @@ in that administrative "realm" to store a secret key i
 which, the proof of knowledge is used to verify the authenticity of a
 principal.
 
-
 II.  Problem Description
 
-There is a programming error in Heimdal implementation that used an
+There is a programming error in the Heimdal implementation that used an
 unauthenticated, plain-text version of the KDC-REP service name found
 in a ticket.
 
 III. Impact
 
-An attacker who has control to the network between a client and the
+An attacker who has control of the network between a client and the
 service it talks to will be able to impersonate the service, allowing
 a successful man-in-the-middle (MITM) attack that circumvents the mutual
 authentication.
@@ -130,17 +129,17 @@ The latest revision of this advisory is available at
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v2.1.21 (FreeBSD)
 
-iQIzBAEBCgAdFiEEHPf/b631yp++G4yy7Wfs1l3PaucFAlll2poACgkQ7Wfs1l3P
-auf+8BAA13v5XSuifFibb4T+UY6tnCJgeRoCKYzwYIgx6glcDZyDUAuK0OtT5Skc
-2EK24SUe2371sKYkLJ0pULKU5suRqWmzVKvSXGpexcYj8h+B9VCHuQc6tM87v3nA
-/Nct5Svwxf+oBcI2MkVrn80NXsi5AfkBMzbgzXKGp3yGdMgbSpUx1uixN8QNtYSb
-9nuZZPlXRa7GJDqLuVZwkZQVq1EXnSWwSNH/Oq8DuW7VrTWGJHflS0i/azxTvT+2
-6zZCtCRkYd/875Bn7COxN5F597xwT76XDz5cQzOBH9hk0p+0hxfjAVSf7m5tbl1A
-g3qBvXmAhavLvtJfwVFtkwZeAzkLiU1FlcNdoFTFmBwzUYvob41K+JPud1sEUFmu
-4w5PXWPq3CbjvwzabOwFRlaA9XMBv8JSgATET3rk6ECjQ6I9+ptYkAXtpiCFXtxq
-09kw5dbsqwJ3RQsw/ZtNdbQhhoEG3rNTOCLkLYM3VPwPaCaDAFXN2OGRf6lE21HX
-QZQ57OypjTfd7OaSeM6kVeF/xYxh3AoxPsPdqTxphBOF+Ih0zCwcSVdXumuSqufq
-daNo+qLV7/IqvY9p0YmHtLKGhwss8jVQBTObNW8JESxmWrDAwtUke0fxnqK9LKMT
-vWbvNsgUaLFNEisMkY25VZCzgUiIDJu5JyhTMQtlqQOSNYB686k=
-=enb2
+iQIzBAEBCgAdFiEEHPf/b631yp++G4yy7Wfs1l3PaucFAllmPAAACgkQ7Wfs1l3P
+aueW0g//Xty2i00igBtc4QINfGQZKzzcZOUs4tjoK2zmrzJQFaCsZodMO/R+P+U8
+ZGwi3r+sgW9uedUYz7jiWhVaOFOVItEJIshp7hN+ejWB+FWVZn8t+ZUJd3mTLoay
+H1H159lwQ+TBOUNm/J+DA8b6qpRxjkk7eYylRVuqw8XxYZALKenMmo02HpwfjSBj
+DbIcB0aHVex6nXySIik3bxQYO0IZPHG0KPy65Lm/RM0l/bPhU9lBrHvvXJvDpX8z
+4vVJOWDywhyatLdV97X6fiDLB2bvDzZgyM1xgvPOFBRsR0VfUUhf35+FZ33Y5H+B
+sf/nduluKOeGP45IJQ63GD034JZvcDD4fWZRZeqNbAeMbp4GhicglGfwSO1A/kfi
+cjC8QMpDyPNB9uO6/so4FscCbkUbWZH1FbXzJb7Te1hKKykaR+A/YWNFaU1+rJIC
+ZegR5R2bAAN3aA8gEvQgb5GdRAZsuAZ49A9FZBLhBpwqRNtmUC49b+RpCMn38+ck
+gQqBQeHdSnl/RqNHTwN4jHUzCnc9Dcfhm8hgoBcAInGX4HG4BGvQMYST4isqZ8va
+XQOkvd2OHCteVsJoUaqmGzjmCQHhFLxZ4SIp2OIQpFaZ6xOUG44EJnW79ExqShoo
+6TVvnMmvjjRnIzUP56YwSUvcned7oIECrSGfS5/fNJaGhQuVy3c=
+=KC+I
 -----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201707121511.v6CFBc7K033429>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation