New release notes: SA-03:02, SA-03:03.

author: bmah <bmah@FreeBSD.org> 2003-02-24 17:21:15 +0000
committer: bmah <bmah@FreeBSD.org> 2003-02-24 17:21:15 +0000
commit: 803faf089e2cfb368246c9d190a63c9e9b31f108 (patch)
tree: d48ba3148b283f61763673a70069ff317517ca19 /release/doc
parent: 16b05986d0e6626f027498791f5e38bdca5bd5a3 (diff)
download: FreeBSD-src-803faf089e2cfb368246c9d190a63c9e9b31f108.zip
FreeBSD-src-803faf089e2cfb368246c9d190a63c9e9b31f108.tar.gz
2 files changed, 28 insertions, 2 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index a4cd693..7b4754c 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -103,7 +103,20 @@
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:01.cvs.asc">FreeBSD-SA-03:01</ulink>.
       &merged;</para>
 
-  </sect2>
+    <para>A timing-based attack on <application>OpenSSL</application>,
+      which could allow a very powerful attacker access to plaintext
+      under certain circumstances, has been prevented via an upgrade
+      to <application>OpenSSL</application> 0.9.7.  See security
+      advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:02.openssl.asc">FreeBSD-SA-03:02</ulink>
+      for more details. &merged;</para>
+
+    <para>The security and performance of the
+      <quote>syncookies</quote> feature has been improved to increase
+      the resistance of a &os; host to SYN flood denial-of-service
+      attacks.  More details are given in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>. &merged;</para>
+      </sect2>
 
   <sect2 id="kernel">
     <title>Kernel Changes</title>
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index a4cd693..7b4754c 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -103,7 +103,20 @@
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:01.cvs.asc">FreeBSD-SA-03:01</ulink>.
       &merged;</para>
 
-  </sect2>
+    <para>A timing-based attack on <application>OpenSSL</application>,
+      which could allow a very powerful attacker access to plaintext
+      under certain circumstances, has been prevented via an upgrade
+      to <application>OpenSSL</application> 0.9.7.  See security
+      advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:02.openssl.asc">FreeBSD-SA-03:02</ulink>
+      for more details. &merged;</para>
+
+    <para>The security and performance of the
+      <quote>syncookies</quote> feature has been improved to increase
+      the resistance of a &os; host to SYN flood denial-of-service
+      attacks.  More details are given in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>. &merged;</para>
+      </sect2>
 
   <sect2 id="kernel">
     <title>Kernel Changes</title>
author	bmah <bmah@FreeBSD.org>	2003-02-24 17:21:15 +0000
committer	bmah <bmah@FreeBSD.org>	2003-02-24 17:21:15 +0000
commit	803faf089e2cfb368246c9d190a63c9e9b31f108 (patch)
tree	d48ba3148b283f61763673a70069ff317517ca19 /release/doc
parent	16b05986d0e6626f027498791f5e38bdca5bd5a3 (diff)
download	FreeBSD-src-803faf089e2cfb368246c9d190a63c9e9b31f108.zip FreeBSD-src-803faf089e2cfb368246c9d190a63c9e9b31f108.tar.gz