From owner-svn-src-releng@freebsd.org Tue Sep 15 21:48:26 2020 Return-Path: Delivered-To: svn-src-releng@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 75F793E1732; Tue, 15 Sep 2020 21:48:26 +0000 (UTC) (envelope-from gordon@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BrcL22YFTz3TR4; Tue, 15 Sep 2020 21:48:26 +0000 (UTC) (envelope-from gordon@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 3B001EF39; Tue, 15 Sep 2020 21:48:26 +0000 (UTC) (envelope-from gordon@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id 08FLmQEa046661; Tue, 15 Sep 2020 21:48:26 GMT (envelope-from gordon@FreeBSD.org) Received: (from gordon@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id 08FLmOYA046653; Tue, 15 Sep 2020 21:48:24 GMT (envelope-from gordon@FreeBSD.org) Message-Id: <202009152148.08FLmOYA046653@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: gordon set sender to gordon@FreeBSD.org using -f From: Gordon Tetlow Date: Tue, 15 Sep 2020 21:48:24 +0000 (UTC) To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-releng@freebsd.org Subject: svn commit: r365782 - in releng: 11.3 11.3/sys/conf 11.4 11.4/sys/conf 12.1 12.1/sys/conf 12.2 12.2/sys/conf X-SVN-Group: releng X-SVN-Commit-Author: gordon X-SVN-Commit-Paths: in releng: 11.3 11.3/sys/conf 11.4 11.4/sys/conf 12.1 12.1/sys/conf 12.2 12.2/sys/conf X-SVN-Commit-Revision: 365782 X-SVN-Commit-Repository: base MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-src-releng@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: SVN commit messages for the release engineering / security commits to the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Sep 2020 21:48:26 -0000 Author: gordon Date: Tue Sep 15 21:48:24 2020 New Revision: 365782 URL: https://svnweb.freebsd.org/changeset/base/365782 Log: Add UPDATING entries and bump version. Approved by: so Approved by: re (implicit for releng/12.2) Modified: releng/11.3/UPDATING releng/11.3/sys/conf/newvers.sh releng/11.4/UPDATING releng/11.4/sys/conf/newvers.sh releng/12.1/UPDATING releng/12.1/sys/conf/newvers.sh releng/12.2/UPDATING releng/12.2/sys/conf/newvers.sh Modified: releng/11.3/UPDATING ============================================================================== --- releng/11.3/UPDATING Tue Sep 15 21:47:44 2020 (r365781) +++ releng/11.3/UPDATING Tue Sep 15 21:48:24 2020 (r365782) @@ -16,6 +16,20 @@ from older versions of FreeBSD, try WITHOUT_CLANG and the tip of head, and then rebuild without this option. The bootstrap process from older version of current across the gcc/clang cutover is a bit fragile. +20200915 p14 FreeBSD-SA-20:27.ure + FreeBSD-SA-20:28.bhyve_vmcs + FreeBSD-SA-20:29.bhyve_svm + FreeBSD-SA-20:30.ftpd + + Fix ure device driver susceptible to packet-in-packet attack. + [SA-20:27.ure] + + Fix bhyve privilege escalation via VMCS access. [SA-20:28.bhyve_vmcs] + + Fix bhyve SVM guest escape. [SA-20:29.bhyve_svm] + + Fix ftpd privilege escalation via ftpchroot. [SA-20:30.ftpd] + 20200902 p13 FreeBSD-EN-20:17.linuxthread FreeBSD-EN-20:18.getfsstat FreeBSD-SA-20:24.ipv6 Modified: releng/11.3/sys/conf/newvers.sh ============================================================================== --- releng/11.3/sys/conf/newvers.sh Tue Sep 15 21:47:44 2020 (r365781) +++ releng/11.3/sys/conf/newvers.sh Tue Sep 15 21:48:24 2020 (r365782) @@ -44,7 +44,7 @@ TYPE="FreeBSD" REVISION="11.3" -BRANCH="RELEASE-p13" +BRANCH="RELEASE-p14" if [ -n "${BRANCH_OVERRIDE}" ]; then BRANCH=${BRANCH_OVERRIDE} fi Modified: releng/11.4/UPDATING ============================================================================== --- releng/11.4/UPDATING Tue Sep 15 21:47:44 2020 (r365781) +++ releng/11.4/UPDATING Tue Sep 15 21:48:24 2020 (r365782) @@ -16,6 +16,20 @@ from older versions of FreeBSD, try WITHOUT_CLANG and the tip of head, and then rebuild without this option. The bootstrap process from older version of current across the gcc/clang cutover is a bit fragile. +20200915 p4 FreeBSD-SA-20:27.ure + FreeBSD-SA-20:28.bhyve_vmcs + FreeBSD-SA-20:29.bhyve_svm + FreeBSD-SA-20:30.ftpd + + Fix ure device driver susceptible to packet-in-packet attack. + [SA-20:27.ure] + + Fix bhyve privilege escalation via VMCS access. [SA-20:28.bhyve_vmcs] + + Fix bhyve SVM guest escape. [SA-20:29.bhyve_svm] + + Fix ftpd privilege escalation via ftpchroot. [SA-20:30.ftpd] + 20200902 p3 FreeBSD-EN-20:17.linuxthread FreeBSD-EN-20:18.getfsstat FreeBSD-SA-20:25.sctp Modified: releng/11.4/sys/conf/newvers.sh ============================================================================== --- releng/11.4/sys/conf/newvers.sh Tue Sep 15 21:47:44 2020 (r365781) +++ releng/11.4/sys/conf/newvers.sh Tue Sep 15 21:48:24 2020 (r365782) @@ -44,7 +44,7 @@ TYPE="FreeBSD" REVISION="11.4" -BRANCH="RELEASE-p3" +BRANCH="RELEASE-p4" if [ -n "${BRANCH_OVERRIDE}" ]; then BRANCH=${BRANCH_OVERRIDE} fi Modified: releng/12.1/UPDATING ============================================================================== --- releng/12.1/UPDATING Tue Sep 15 21:47:44 2020 (r365781) +++ releng/12.1/UPDATING Tue Sep 15 21:48:24 2020 (r365782) @@ -16,6 +16,20 @@ from older versions of FreeBSD, try WITHOUT_CLANG and the tip of head, and then rebuild without this option. The bootstrap process from older version of current across the gcc/clang cutover is a bit fragile. +20200915 p10 FreeBSD-SA-20:27.ure + FreeBSD-SA-20:28.bhyve_vmcs + FreeBSD-SA-20:29.bhyve_svm + FreeBSD-SA-20:30.ftpd + + Fix ure device driver susceptible to packet-in-packet attack. + [SA-20:27.ure] + + Fix bhyve privilege escalation via VMCS access. [SA-20:28.bhyve_vmcs] + + Fix bhyve SVM guest escape. [SA-20:29.bhyve_svm] + + Fix ftpd privilege escalation via ftpchroot. [SA-20:30.ftpd] + 20200902 p9 FreeBSD-EN-20:17.linuxthread FreeBSD-SA-20:25.sctp FreeBSD-SA-20:26.dhclient Modified: releng/12.1/sys/conf/newvers.sh ============================================================================== --- releng/12.1/sys/conf/newvers.sh Tue Sep 15 21:47:44 2020 (r365781) +++ releng/12.1/sys/conf/newvers.sh Tue Sep 15 21:48:24 2020 (r365782) @@ -46,7 +46,7 @@ TYPE="FreeBSD" REVISION="12.1" -BRANCH="RELEASE-p9" +BRANCH="RELEASE-p10" if [ -n "${BRANCH_OVERRIDE}" ]; then BRANCH=${BRANCH_OVERRIDE} fi Modified: releng/12.2/UPDATING ============================================================================== --- releng/12.2/UPDATING Tue Sep 15 21:47:44 2020 (r365781) +++ releng/12.2/UPDATING Tue Sep 15 21:48:24 2020 (r365782) @@ -16,6 +16,20 @@ from older versions of FreeBSD, try WITHOUT_CLANG and the tip of head, and then rebuild without this option. The bootstrap process from older version of current across the gcc/clang cutover is a bit fragile. +20200915 p1 FreeBSD-SA-20:27.ure + FreeBSD-SA-20:28.bhyve_vmcs + FreeBSD-SA-20:29.bhyve_svm + FreeBSD-SA-20:30.ftpd + + Fix ure device driver susceptible to packet-in-packet attack. + [SA-20:27.ure] + + Fix bhyve privilege escalation via VMCS access. [SA-20:28.bhyve_vmcs] + + Fix bhyve SVM guest escape. [SA-20:29.bhyve_svm] + + Fix ftpd privilege escalation via ftpchroot. [SA-20:30.ftpd] + 20200912: The make.conf(5) MALLOC_PRODUCTION variable, used for disabling and enabling assertions and statistics gathering in malloc(3), has been Modified: releng/12.2/sys/conf/newvers.sh ============================================================================== --- releng/12.2/sys/conf/newvers.sh Tue Sep 15 21:47:44 2020 (r365781) +++ releng/12.2/sys/conf/newvers.sh Tue Sep 15 21:48:24 2020 (r365782) @@ -49,7 +49,7 @@ TYPE="FreeBSD" REVISION="12.2" -BRANCH=${BRANCH_OVERRIDE:-BETA1} +BRANCH=${BRANCH_OVERRIDE:-BETA1-p1} RELEASE="${REVISION}-${BRANCH}" VERSION="${TYPE} ${RELEASE}"