diff options
author | bmah <bmah@FreeBSD.org> | 2001-01-26 20:24:39 +0000 |
---|---|---|
committer | bmah <bmah@FreeBSD.org> | 2001-01-26 20:24:39 +0000 |
commit | 2bfb47ed1d819886aa3fe07d8444df83f7b66174 (patch) | |
tree | 00e9574e91f04f21ca7bd7537b668fac2e6c1033 /release | |
parent | 3366175318f39df4fad7fff3569d1ce94a1c16cb (diff) | |
download | FreeBSD-src-2bfb47ed1d819886aa3fe07d8444df83f7b66174.zip FreeBSD-src-2bfb47ed1d819886aa3fe07d8444df83f7b66174.tar.gz |
Catch release notes up with security advisories 00:41, 00:76,
00:77 (mistakenly referenced as 00:78), 01:01 (listed previously but
now has an advisory number), 01:08, 01:09.
Diffstat (limited to 'release')
-rw-r--r-- | release/texts/alpha/RELNOTES.TXT | 22 | ||||
-rw-r--r-- | release/texts/i386/RELNOTES.TXT | 22 |
2 files changed, 38 insertions, 6 deletions
diff --git a/release/texts/alpha/RELNOTES.TXT b/release/texts/alpha/RELNOTES.TXT index 32171c8..c4ba60b 100644 --- a/release/texts/alpha/RELNOTES.TXT +++ b/release/texts/alpha/RELNOTES.TXT @@ -262,6 +262,9 @@ profiles" at install-time. These profiles enable different levels of system security by enabling or disabling various system services in rc.conf(5) on new installs. [MERGED] +A bug in which malformed ELF executable images can hang the system has +been fixed (see security advisory FreeBSD-SA-00:41). [MERGED] + A security hole in Linux emulation was fixed (see security advisory FreeBSD-SA-00:42). [MERGED] @@ -295,8 +298,9 @@ FreeBSD-SA-00:69). [MERGED] The "nat deny_incoming" command in ppp(8) now works correctly (see security advisory FreeBSD-SA-00:70). [MERGED] -A bug in OpenSSH in which a server was unable to disable ssh-agent or -X11 forwarding was fixed. [MERGED] +A vulnerability in csh(1)/tcsh(1) temporary files that could allow +overwriting of arbitary user-writable files has been closed (see +security advisory FreeBSD-SA-00:76). [MERGED] The ssh(1) binary is no longer SUID root by default. @@ -307,7 +311,19 @@ ticket files. [MERGED] telnet(1) now does a better job of sanitizing its environment. [MERGED] Several vulnerabilities in procfs(4) were fixed (see security advisory -FreeBSD-SA-00:78). [MERGED] +FreeBSD-SA-00:77). [MERGED] + +A bug in OpenSSH in which a server was unable to disable ssh-agent or +X11 forwarding was fixed (see security advisory FreeBSD-SA-01:01). +[MERGED] + +A bug in ipfw(8) and ipfw6(8) in which inbound TCP segments could +incorrectly be treated as being part of an "established" connection +has been fixed (see security advisory FreeBSD-SA-01:08). [MERGED] + +A bug in crontab(8) that could allow users to read any file on the +system in valid crontab(5) syntax has been fixed (see security +advisory FreeBSD-SA-01:09). [MERGED] 1.3. USERLAND CHANGES diff --git a/release/texts/i386/RELNOTES.TXT b/release/texts/i386/RELNOTES.TXT index 807f849..fa1d7e3 100644 --- a/release/texts/i386/RELNOTES.TXT +++ b/release/texts/i386/RELNOTES.TXT @@ -345,6 +345,9 @@ profiles" at install-time. These profiles enable different levels of system security by enabling or disabling various system services in rc.conf(5) on new installs. [MERGED] +A bug in which malformed ELF executable images can hang the system has +been fixed (see security advisory FreeBSD-SA-00:41). [MERGED] + A security hole in Linux emulation was fixed (see security advisory FreeBSD-SA-00:42). [MERGED] @@ -378,8 +381,9 @@ FreeBSD-SA-00:69). [MERGED] The "nat deny_incoming" command in ppp(8) now works correctly (see security advisory FreeBSD-SA-00:70). [MERGED] -A bug in OpenSSH in which a server was unable to disable ssh-agent or -X11 forwarding was fixed. [MERGED] +A vulnerability in csh(1)/tcsh(1) temporary files that could allow +overwriting of arbitary user-writable files has been closed (see +security advisory FreeBSD-SA-00:76). [MERGED] The ssh(1) binary is no longer SUID root by default. @@ -390,7 +394,19 @@ ticket files. [MERGED] telnet(1) now does a better job of sanitizing its environment. [MERGED] Several vulnerabilities in procfs(4) were fixed (see security advisory -FreeBSD-SA-00:78). [MERGED] +FreeBSD-SA-00:77). [MERGED] + +A bug in OpenSSH in which a server was unable to disable ssh-agent or +X11 forwarding was fixed (see security advisory FreeBSD-SA-01:01). +[MERGED] + +A bug in ipfw(8) and ipfw6(8) in which inbound TCP segments could +incorrectly be treated as being part of an "established" connection +has been fixed (see security advisory FreeBSD-SA-01:08). [MERGED] + +A bug in crontab(8) that could allow users to read any file on the +system in valid crontab(5) syntax has been fixed (see security +advisory FreeBSD-SA-01:09). [MERGED] 1.3. USERLAND CHANGES |