For some reason, it looks like SA-06:{10,11,12,13} were not mentioned

in HEAD's release notes, even though the issues involved were applied (and fixed). Copy their descriptions from one of the RELENG_* branches (RELENG_5 in this case). SA-06:08 and SA-06:09 were not applicable to code on HEAD and thus not mentioned.
author: bmah <bmah@FreeBSD.org> 2006-05-11 19:17:17 +0000
committer: bmah <bmah@FreeBSD.org> 2006-05-11 19:17:17 +0000
commit: d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d (patch)
tree: a44869bba4406b9d4af8d11ba4affeb39b9027e2 /release
parent: 9a9ea4b9c84c6e720030fc68a71748185cdebcb5 (diff)
download: FreeBSD-src-d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d.zip
FreeBSD-src-d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d.tar.gz
2 files changed, 48 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index d8db961..31ef047 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -151,6 +151,30 @@
       For more details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:07.pf.asc">FreeBSD-SA-06:07.pf</ulink>. &merged;</para>
 
+    <para>A logic bug in the NFS server code, which could cause a crash when
+      the server received a message with a zero-length payload, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:10.nfs.asc">FreeBSD-SA-06:10.nfs</ulink>. &merged;</para>
+
+    <para>A programming error in the &man.fast.ipsec.4; implementation
+      results in the sequence number associated with a Security
+      Association not being updated, allowing packets to unconditionally
+      pass sequence number verification checks, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc">FreeBSD-SA-06:11.ipsec</ulink>. &merged;</para>
+
+    <para>A logic bug that could cause &man.opiepasswd.1; to allow an unprivileged
+      user to configure OPIE authentication for the root user under certain
+      circumstances, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:12.opie.asc">FreeBSD-SA-06:12.opie</ulink>. &merged;</para>
+
+    <para>An asynchronous signal handling vulnerability in &man.sendmail.8;,
+      which could allow a remote attacker to execute arbitrary code with the
+      privileges of the user running sendmail, typically root, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc">FreeBSD-SA-06:13.sendmail</ulink>. &merged;</para>
+
     <para arch="i386,amd64">An information disclosure issue found in the
       &os; kernel running on 7th- and 8th-generation AMD processors
       has been fixed.  For more details see security advisory <ulink
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index d8db961..31ef047 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -151,6 +151,30 @@
       For more details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:07.pf.asc">FreeBSD-SA-06:07.pf</ulink>. &merged;</para>
 
+    <para>A logic bug in the NFS server code, which could cause a crash when
+      the server received a message with a zero-length payload, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:10.nfs.asc">FreeBSD-SA-06:10.nfs</ulink>. &merged;</para>
+
+    <para>A programming error in the &man.fast.ipsec.4; implementation
+      results in the sequence number associated with a Security
+      Association not being updated, allowing packets to unconditionally
+      pass sequence number verification checks, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc">FreeBSD-SA-06:11.ipsec</ulink>. &merged;</para>
+
+    <para>A logic bug that could cause &man.opiepasswd.1; to allow an unprivileged
+      user to configure OPIE authentication for the root user under certain
+      circumstances, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:12.opie.asc">FreeBSD-SA-06:12.opie</ulink>. &merged;</para>
+
+    <para>An asynchronous signal handling vulnerability in &man.sendmail.8;,
+      which could allow a remote attacker to execute arbitrary code with the
+      privileges of the user running sendmail, typically root, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc">FreeBSD-SA-06:13.sendmail</ulink>. &merged;</para>
+
     <para arch="i386,amd64">An information disclosure issue found in the
       &os; kernel running on 7th- and 8th-generation AMD processors
       has been fixed.  For more details see security advisory <ulink
author	bmah <bmah@FreeBSD.org>	2006-05-11 19:17:17 +0000
committer	bmah <bmah@FreeBSD.org>	2006-05-11 19:17:17 +0000
commit	d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d (patch)
tree	a44869bba4406b9d4af8d11ba4affeb39b9027e2 /release
parent	9a9ea4b9c84c6e720030fc68a71748185cdebcb5 (diff)
download	FreeBSD-src-d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d.zip FreeBSD-src-d4be68b92e2d1d9fa3bc080f015fbb9fdc5ec45d.tar.gz