New release note: syncache/accept_filter bugfix.

2 files changed, 10 insertions, 0 deletions

diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index 8e295a2..50b3d13 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -1766,6 +1766,11 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting>
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.asc">FreeBSD-SA-02:23</ulink>.
       &merged;</para>
 
+    <para>A bug has been fixed in the implementation of the TCP SYN 
+      cache (<quote>syncache</quote>), which could allow a remote
+      attacker to deny access to a service when accept filters
+      (see &man.accept.filter.9;) were in use.  This bug has been 
+      fixed. &merged;</para>
   </sect2>
   <sect2 id="userland">
     <title>Userland Changes</title>
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index 8e295a2..50b3d13 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -1766,6 +1766,11 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting>
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.asc">FreeBSD-SA-02:23</ulink>.
       &merged;</para>
 
+    <para>A bug has been fixed in the implementation of the TCP SYN 
+      cache (<quote>syncache</quote>), which could allow a remote
+      attacker to deny access to a service when accept filters
+      (see &man.accept.filter.9;) were in use.  This bug has been 
+      fixed. &merged;</para>
   </sect2>
   <sect2 id="userland">
     <title>Userland Changes</title>