git: 0b1dfc94785e - releng/14.3 - Add UPDATING entries and bump version

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Mark Johnston <markj_at_FreeBSD.org>
Date: Tue, 09 Jun 2026 19:18:48 UTC
The branch releng/14.3 has been updated by markj:

URL: https://cgit.FreeBSD.org/src/commit/?id=0b1dfc94785e1ae263e9334a07fbe2a1ef98c0c9

commit 0b1dfc94785e1ae263e9334a07fbe2a1ef98c0c9
Author:     Mark Johnston <markj@FreeBSD.org>
AuthorDate: 2026-06-07 17:34:10 +0000
Commit:     Mark Johnston <markj@FreeBSD.org>
CommitDate: 2026-06-08 15:24:16 +0000

    Add UPDATING entries and bump version
    
    Approved by:    so
---
 UPDATING            | 41 +++++++++++++++++++++++++++++++++++++++++
 sys/conf/newvers.sh |  2 +-
 2 files changed, 42 insertions(+), 1 deletion(-)

diff --git a/UPDATING b/UPDATING
index 8abe8c180b1f..54f8fba0e6a2 100644
--- a/UPDATING
+++ b/UPDATING
@@ -12,6 +12,47 @@ Items affecting the ports and packages system can be found in
 /usr/ports/UPDATING.  Please read that file before updating system packages
 and/or ports.
 
+20260609:
+	14.3-RELEASE-p15 EN-26:15.openssl
+			SA-26:25.thr
+			SA-26:26.ktls
+			SA-26:27.sound
+			SA-26:28.capsicum
+			SA-26:29.ip6_multicast
+			SA-26:30.linux
+			SA-26:31.arm64
+			SA-26:32.elf
+			SA-26:33.unbound
+			SA-26:34.vt
+			SA-26:35.openssl
+			SA-26:36.ldns
+
+	Update OpenSSL to 3.0.20 and 3.5.6. [EN-26:15.openssl]
+
+	Missing permission check in thr_kill2(2). [SA-26:25.thr]
+
+	Arbitrary file overwrite via the KTLS receive path. [SA-26:26.ktls]
+
+	Multiple vulnerabilities in the sound(4) mmap path. [SA-26:27.sound]
+
+	sigqueue(2) missing capability mode restriction. [SA-26:28.capsicum]
+
+	Use-after-free bug in the IPV6_MSFILTER socket option handler. [SA-26:29.ip6_multicast]
+
+	Flaw in Linuxulator execution of setugid binaries. [SA-26:30.linux]
+
+	Arm CPU errata may bypass page table permission changes. [SA-26:31.arm64]
+
+	ASLR bypass for setuid executables via procctl(2). [SA-26:32.elf]
+
+	Multiple vulnerabilities in unbound. [SA-26:33.unbound]
+
+	Integer overflow in vt(4) CONS_HISTORY ioctl. [SA-26:34.vt]
+
+	Multiple vulnerabilities in OpenSSL. [SA-26:35.openssl]
+
+	Insufficient response validation in the ldns stub resolver. [SA-26:36.ldns]
+
 20260520:
 	14.3-RELEASE-p14 SA-26:18.setcred
 			SA-26:19.file
diff --git a/sys/conf/newvers.sh b/sys/conf/newvers.sh
index 1c3b6a33dd3b..0617bc4d8e1a 100644
--- a/sys/conf/newvers.sh
+++ b/sys/conf/newvers.sh
@@ -53,7 +53,7 @@
 
 TYPE="FreeBSD"
 REVISION="14.3"
-BRANCH="RELEASE-p14"
+BRANCH="RELEASE-p15"
 if [ -n "${BRANCH_OVERRIDE}" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi