svn commit: r251217 - in releng/8.4/release/doc/en_US.ISO8859-1: errata relnotes
Hiroki Sato
hrs at FreeBSD.org
Sat Jun 1 10:57:26 UTC 2013
Author: hrs
Date: Sat Jun 1 10:57:25 2013
New Revision: 251217
URL: http://svnweb.freebsd.org/changeset/base/251217
Log:
Document SA-12:01 to :08 and SA-13:02 to :05.
Approved by: re (implicitly)
Modified:
releng/8.4/release/doc/en_US.ISO8859-1/errata/article.xml
releng/8.4/release/doc/en_US.ISO8859-1/relnotes/article.xml
Modified: releng/8.4/release/doc/en_US.ISO8859-1/errata/article.xml
==============================================================================
--- releng/8.4/release/doc/en_US.ISO8859-1/errata/article.xml Sat Jun 1 08:07:09 2013 (r251216)
+++ releng/8.4/release/doc/en_US.ISO8859-1/errata/article.xml Sat Jun 1 10:57:25 2013 (r251217)
@@ -14,7 +14,7 @@
]]>
<![ %release.type.release [
<!ENTITY release "&release.current;">
-<!ENTITY release.bugfix "8.2-RELEASE">
+<!ENTITY release.bugfix "8.4-RELEASE">
]]>
]>
@@ -125,18 +125,15 @@
<sect1 id="security">
<title>Security Advisories</title>
- <para>No advisory.</para>
-
-<!--
<para>The following security advisories pertain to &os; &release.bugfix;.
For more information, consult the individual advisories available from
<ulink url="http://security.FreeBSD.org/"></ulink>.</para>
<informaltable frame="none" pgwide="1">
<tgroup cols="3">
- <colspec colwidth="1*"/>
- <colspec colwidth="1*"/>
- <colspec colwidth="3*"/>
+ <colspec colwidth="1*" />
+ <colspec colwidth="1*" />
+ <colspec colwidth="3*" />
<thead>
<row>
<entry>Advisory</entry>
@@ -146,16 +143,116 @@
</thead>
<tbody>
- <row>
- <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:15.ssl.asc"
- >SA-09:15.ssl</ulink></entry>
- <entry>3 Dec 2009</entry>
- <entry><para>SSL protocol flaw</para></entry>
- </row>
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc"
+ >SA-12:01.openssl</ulink></entry>
+
+ <entry>03 May 2012</entry>
+
+ <entry><para>OpenSSL multiple vulnerabilities</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:02.crypt.asc"
+ >SA-12:02.crypt</ulink></entry>
+
+ <entry>30 May 2012</entry>
+
+ <entry><para>Incorrect crypt() hashing</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:03.bind.asc"
+ >SA-12:03.bind</ulink></entry>
+
+ <entry>12 June 2012</entry>
+
+ <entry><para>Incorrect handling of zero-length RDATA fields in named(8)</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:04.sysret.asc"
+ >SA-12:04.sysret</ulink></entry>
+
+ <entry>12 June 2012</entry>
+
+ <entry><para>Privilege escalation when returning from kernel</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:05.bind.asc"
+ >SA-12:05.bind</ulink></entry>
+
+ <entry>06 August 2012</entry>
+
+ <entry><para>named(8) DNSSEC validation Denial of Service</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:06.bind.asc"
+ >SA-12:06.bind</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Multiple Denial of Service vulnerabilities with named(8)</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:07.hostapd.asc"
+ >SA-12:07.hostapd</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Insufficient message length validation for EAP-TLS messages</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:08.linux.asc"
+ >SA-12:08.linux</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Linux compatibility layer input validation error</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:02.libc.asc"
+ >SA-13:02.libc</ulink></entry>
+
+ <entry>19 February 2013</entry>
+
+ <entry><para>glob(3) related resource exhaustion</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:03.openssl.asc"
+ >SA-13:03.openssl</ulink></entry>
+
+ <entry>02 April 2013</entry>
+
+ <entry><para>OpenSSL multiple vulnerabilities</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:04.bind.asc"
+ >SA-13:04.bind</ulink></entry>
+
+ <entry>02 April 2013</entry>
+
+ <entry><para>BIND remote denial of service</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:05.nfsserver.asc"
+ >SA-13:05.nfsserver</ulink></entry>
+
+ <entry>29 April 2013</entry>
+
+ <entry><para>Insufficient input validation in the NFS server</para></entry>
+ </row>
</tbody>
</tgroup>
</informaltable>
--->
</sect1>
<sect1 id="open-issues">
Modified: releng/8.4/release/doc/en_US.ISO8859-1/relnotes/article.xml
==============================================================================
--- releng/8.4/release/doc/en_US.ISO8859-1/relnotes/article.xml Sat Jun 1 08:07:09 2013 (r251216)
+++ releng/8.4/release/doc/en_US.ISO8859-1/relnotes/article.xml Sat Jun 1 10:57:25 2013 (r251217)
@@ -119,31 +119,130 @@
advisories available from
<ulink url="http://security.FreeBSD.org/"></ulink>.</para>
-<!--
<informaltable frame="none" pgwide="1">
<tgroup cols="3">
- <colspec colwidth="1*"/>
- <colspec colwidth="1*"/>
- <colspec colwidth="3*"/>
- <thead>
- <row>
- <entry>Advisory</entry>
- <entry>Date</entry>
- <entry>Topic</entry>
- </row>
- </thead>
-
- <tbody>
- <row>
- <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-10:08.bzip2.asc"
- >SA-10:08.bzip2</ulink></entry>
- <entry>20 September 2010</entry>
- <entry><para>Integer overflow in bzip2 decompression</para></entry>
- </row>
- </tbody>
+ <colspec colwidth="1*" />
+ <colspec colwidth="1*" />
+ <colspec colwidth="3*" />
+ <thead>
+ <row>
+ <entry>Advisory</entry>
+ <entry>Date</entry>
+ <entry>Topic</entry>
+ </row>
+ </thead>
+
+ <tbody>
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc"
+ >SA-12:01.openssl</ulink></entry>
+
+ <entry>03 May 2012</entry>
+
+ <entry><para>OpenSSL multiple vulnerabilities</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:02.crypt.asc"
+ >SA-12:02.crypt</ulink></entry>
+
+ <entry>30 May 2012</entry>
+
+ <entry><para>Incorrect crypt() hashing</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:03.bind.asc"
+ >SA-12:03.bind</ulink></entry>
+
+ <entry>12 June 2012</entry>
+
+ <entry><para>Incorrect handling of zero-length RDATA fields in named(8)</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:04.sysret.asc"
+ >SA-12:04.sysret</ulink></entry>
+
+ <entry>12 June 2012</entry>
+
+ <entry><para>Privilege escalation when returning from kernel</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:05.bind.asc"
+ >SA-12:05.bind</ulink></entry>
+
+ <entry>06 August 2012</entry>
+
+ <entry><para>named(8) DNSSEC validation Denial of Service</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:06.bind.asc"
+ >SA-12:06.bind</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Multiple Denial of Service vulnerabilities with named(8)</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:07.hostapd.asc"
+ >SA-12:07.hostapd</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Insufficient message length validation for EAP-TLS messages</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:08.linux.asc"
+ >SA-12:08.linux</ulink></entry>
+
+ <entry>22 November 2012</entry>
+
+ <entry><para>Linux compatibility layer input validation error</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:02.libc.asc"
+ >SA-13:02.libc</ulink></entry>
+
+ <entry>19 February 2013</entry>
+
+ <entry><para>glob(3) related resource exhaustion</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:03.openssl.asc"
+ >SA-13:03.openssl</ulink></entry>
+
+ <entry>02 April 2013</entry>
+
+ <entry><para>OpenSSL multiple vulnerabilities</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:04.bind.asc"
+ >SA-13:04.bind</ulink></entry>
+
+ <entry>02 April 2013</entry>
+
+ <entry><para>BIND remote denial of service</para></entry>
+ </row>
+
+ <row>
+ <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-13:05.nfsserver.asc"
+ >SA-13:05.nfsserver</ulink></entry>
+
+ <entry>29 April 2013</entry>
+
+ <entry><para>Insufficient input validation in the NFS server</para></entry>
+ </row>
+ </tbody>
</tgroup>
</informaltable>
--->
</sect2>
<sect2 id="kernel">
More information about the svn-src-releng
mailing list