From owner-svn-doc-all@FreeBSD.ORG Thu Jun 6 06:26:27 2013 Return-Path: Delivered-To: svn-doc-all@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 13FBA113; Thu, 6 Jun 2013 06:26:27 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) by mx1.freebsd.org (Postfix) with ESMTP id EB0EA19F0; Thu, 6 Jun 2013 06:26:26 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.7/8.14.7) with ESMTP id r566QQpt020757; Thu, 6 Jun 2013 06:26:26 GMT (envelope-from hrs@svn.freebsd.org) Received: (from hrs@localhost) by svn.freebsd.org (8.14.7/8.14.5/Submit) id r566QQEp020756; Thu, 6 Jun 2013 06:26:26 GMT (envelope-from hrs@svn.freebsd.org) Message-Id: <201306060626.r566QQEp020756@svn.freebsd.org> From: Hiroki Sato Date: Thu, 6 Jun 2013 06:26:26 +0000 (UTC) To: doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org Subject: svn commit: r41845 - head/en_US.ISO8859-1/htdocs/releases/8.4R X-SVN-Group: doc-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-doc-all@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the entire doc trees \(except for " user" , " projects" , and " translations" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Jun 2013 06:26:27 -0000 Author: hrs Date: Thu Jun 6 06:26:26 2013 New Revision: 41845 URL: http://svnweb.freebsd.org/changeset/doc/41845 Log: Regen from r251451. Modified: head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html Modified: head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html ============================================================================== --- head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html Wed Jun 5 14:15:06 2013 (r41844) +++ head/en_US.ISO8859-1/htdocs/releases/8.4R/errata.html Thu Jun 6 06:26:26 2013 (r41845) @@ -1,249 +1,61 @@ - - - - -FreeBSD 8.4-RELEASE Errata - - - - - -
-
-

FreeBSD 8.4-RELEASE Errata

- -

The FreeBSD Project

- -

Copyright © 2013 The FreeBSD Documentation Project

- -

$FreeBSD: releng/8.4/release/doc/en_US.ISO8859-1/errata/article.xml -251217 2013-06-01 10:57:25Z hrs $
-

- -
-

FreeBSD is a registered trademark of the FreeBSD Foundation.

- -

Intel, Celeron, EtherExpress, i386, i486, Itanium, Pentium, and Xeon are trademarks or -registered trademarks of Intel Corporation or its subsidiaries in the United States and -other countries.

- -

SPARC, SPARC64, SPARCengine, and UltraSPARC are trademarks of SPARC International, Inc -in the United States and other countries. SPARC International, Inc owns all of the SPARC -trademarks and under licensing agreements allows the proper use of these trademarks by -its members.

- -

Many of the designations used by manufacturers and sellers to distinguish their -products are claimed as trademarks. Where those designations appear in this document, and -the FreeBSD Project was aware of the trademark claim, the designations have been followed -by the “™” or the “” symbol.

-
- -
-
- -
-
-

This document lists errata items for FreeBSD 8.4-RELEASE, containing significant -information discovered after the release or too late in the release cycle to be otherwise -included in the release documentation. This information includes security advisories, as -well as news relating to the software or documentation that could affect its operation or -usability. An up-to-date version of this document should always be consulted before -installing this version of FreeBSD.

- -

This errata document for FreeBSD 8.4-RELEASE will be maintained until the EoL of -FreeBSD 8.4-STABLE branch.

-
-
- -
-
-

1 Introduction

- -

This errata document contains “late-breaking news” about FreeBSD -8.4-RELEASE. Before installing this version, it is important to consult this document to -learn about any post-release discoveries or problems that may already have been found and -fixed.

- -

Any version of this errata document actually distributed with the release (for -example, on a CDROM distribution) will be out of date by definition, but other copies are -kept updated on the Internet and should be consulted as the “current errata” -for this release. These other copies of the errata are located at http://www.FreeBSD.org/releases/, plus any sites which keep up-to-date -mirrors of this location.

- -

Source and binary snapshots of FreeBSD 8.4-STABLE also contain up-to-date copies of -this document (as of the time of the snapshot).

- -

For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

-
- -
-
-

2 Security Advisories

- -

The following security advisories pertain to FreeBSD 8.4-RELEASE. For more -information, consult the individual advisories available from http://security.FreeBSD.org/.

- -
- ---- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
AdvisoryDateTopic
SA-12:01.openssl03May2012 -

OpenSSL multiple vulnerabilities

-
SA-12:02.crypt30May2012 -

Incorrect crypt() hashing

-
SA-12:03.bind12June2012 -

Incorrect handling of zero-length RDATA fields in named(8)

-
SA-12:04.sysret12June2012 -

Privilege escalation when returning from kernel

-
SA-12:05.bind06August2012 -

named(8) DNSSEC validation Denial of Service

-
SA-12:06.bind22November2012 -

Multiple Denial of Service vulnerabilities with named(8)

-
SA-12:07.hostapd22November2012 -

Insufficient message length validation for EAP-TLS messages

-
SA-12:08.linux22November2012 -

Linux compatibility layer input validation error

-
SA-13:02.libc19February2013 -

glob(3) related resource exhaustion

-
SA-13:03.openssl02April2013 -

OpenSSL multiple vulnerabilities

-
SA-13:04.bind02April2013 -

BIND remote denial of service

-
SA-13:05.nfsserver29April2013 -

Insufficient input validation in the NFS server

-
-
-
- -
-
-

3 Open Issues

- -

No open issue.

-
- -
-
-

4 Late-Breaking News and -Corrections

- -

No news.

-
-
- -
-

This file, and other release-related documents, can be -downloaded from ftp://ftp.FreeBSD.org/.

- -

For questions about FreeBSD, read the documentation before contacting <questions@FreeBSD.org>.

- -

For questions about this documentation, e-mail <doc@FreeBSD.org>.

- - - + +FreeBSD 8.4-RELEASE Errata

FreeBSD 8.4-RELEASE Errata

+ The FreeBSD Project +

Copyright © 2013 The FreeBSD Documentation Project

FreeBSD is a registered trademark of + the FreeBSD Foundation.

Intel, Celeron, EtherExpress, i386, + i486, Itanium, Pentium, and Xeon are trademarks or registered + trademarks of Intel Corporation or its subsidiaries in the United + States and other countries.

SPARC, SPARC64, SPARCengine, and + UltraSPARC are trademarks of SPARC International, Inc in the United + States and other countries. SPARC International, Inc owns all of the + SPARC trademarks and under licensing agreements allows the proper use + of these trademarks by its members.

Many of the designations used by + manufacturers and sellers to distinguish their products are claimed + as trademarks. Where those designations appear in this document, + and the FreeBSD Project was aware of the trademark claim, the + designations have been followed by the or the + ® symbol.

Last modified on 2013-06-06 by hrs.

Table of Contents

1. Introduction
2. Security Advisories
3. Open Issues
4. Late-Breaking News and Corrections

Abstract

This document lists errata items for FreeBSD 8.4-RELEASE, + containing significant information discovered after the release + or too late in the release cycle to be otherwise included in the + release documentation. + This information includes security advisories, as well as news + relating to the software or documentation that could affect its + operation or usability. An up-to-date version of this document + should always be consulted before installing this version of + FreeBSD.

This errata document for FreeBSD 8.4-RELEASE + will be maintained until the release of FreeBSD 8.5-RELEASE.

1. Introduction

This errata document contains late-breaking news + about FreeBSD 8.4-RELEASE + Before installing this version, it is important to consult this + document to learn about any post-release discoveries or problems + that may already have been found and fixed.

Any version of this errata document actually distributed + with the release (for example, on a CDROM distribution) will be + out of date by definition, but other copies are kept updated on + the Internet and should be consulted as the current + errata for this release. These other copies of the + errata are located at http://www.FreeBSD.org/releases/, plus any sites + which keep up-to-date mirrors of this location.

Source and binary snapshots of FreeBSD 8.4-STABLE also + contain up-to-date copies of this document (as of the time of + the snapshot).

For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/.

2. Security Advisories

The following security advisories pertain to FreeBSD 8.4-RELEASE. + For more information, consult the individual advisories available from + http://security.FreeBSD.org/.

AdvisoryDateTopic
SA-12:01.openssl03 May 2012

OpenSSL multiple vulnerabilities

SA-12:02.crypt30 May 2012

Incorrect crypt() hashing

SA-12:03.bind12 June 2012

Incorrect handling of zero-length RDATA fields in named(8)

SA-12:04.sysret12 June 2012

Privilege escalation when returning from kernel

SA-12:05.bind06 August 2012

named(8) DNSSEC validation Denial of Service

SA-12:06.bind22 November 2012

Multiple Denial of Service vulnerabilities with named(8)

SA-12:07.hostapd22 November 2012

Insufficient message length validation for EAP-TLS messages

SA-12:08.li nux22 November 2012Linux compatibility layer input validation error

SA-13:02.libc19 February 2013

glob(3) related resource exhaustion

SA-13:03.openssl02 April 2013

OpenSSL multiple vulnerabilities

SA-13:04.bind02 April 2013

BIND remote denial of service

SA-13:05.nfsserver29 April 2013

Insufficient input validation in the NFS server

3. Open Issues

[20130606] The fxp(4) network interface driver may not + work well with the dhclient(8) utility. More specifically, + if the /etc/rc.conf has the following + line:

ifconfig_fxp0="DHCP"

to activate a DHCP client to configure the network + interface, the following notification messages are displayed and + the dhclient(8) utility keeps trying to initialize the + network interface forever.

kernel: fxp0: link state changed to UP
+kernel: fxp0: link state changed to DOWN

A patch to fix this issue will be released as an Errata + Notice.

4. Late-Breaking News and Corrections

[20130606] As described in FreeBSD 8.4-RELEASE Release Notes, + FreeBSD ZFS subsystem has been updated to support feature flags for + ZFS pools. However, the default version number of a newly + created ZFS pool is still 28.

This is because FreeBSD 9.0 and 9.1 do not support the feature + flags. This means ZFS pools with feature flag support cannot be + used on FreeBSD 9.0 and 9.1. An 8.X system with v28 ZFS pools can + be upgraded to 9.X with no problem. Note that zfs(8) + send and receive commands + do not work between pools with different versions. Once a ZFS + pool is upgraded from v28, there is no way to upgrade the system + to FreeBSD 9.0 and 9.1. FreeBSD 9.2 and later will support ZFS pools + with feature flags.

To create a ZFS pool with feature flag support, use the + zpool(8) create command and then the + zpool(8) upgrade command.

\ No newline at end of file