diff options
author | hrs <hrs@FreeBSD.org> | 2004-04-17 17:06:28 +0000 |
---|---|---|
committer | hrs <hrs@FreeBSD.org> | 2004-04-17 17:06:28 +0000 |
commit | 9a6427ca457f977af7ec3525d94e9cecf6c8ed1b (patch) | |
tree | 7743aaa9f957f43e478926e96f227e37ccae4755 /release | |
parent | 36ff2c8c633e99f0105d9123c2aa64e5d0f1dc0f (diff) | |
download | FreeBSD-src-9a6427ca457f977af7ec3525d94e9cecf6c8ed1b.zip FreeBSD-src-9a6427ca457f977af7ec3525d94e9cecf6c8ed1b.tar.gz |
New release note:
SA-04:07.cvs.
Diffstat (limited to 'release')
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/article.sgml | 7 | ||||
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 7 |
2 files changed, 14 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index 33415df..fe24674 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -174,6 +174,13 @@ mechanisms, or privilege escalation. More details can be found in security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:06.ipv6.asc">FreeBSD-SA-04:06</ulink>.</para> + + <para>Two programming errors in <application>CVS</application> + have been fixed. They allow a server to overwrite arbitrary + files on the client, and a client to read arbitrary files + on the server when accessing remote CVS repositories. + More details can be found in security advisory <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.asc">FreeBSD-SA-04:07</ulink>. &merged;</para> </sect2> <sect2 id="kernel"> diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index 33415df..fe24674 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -174,6 +174,13 @@ mechanisms, or privilege escalation. More details can be found in security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:06.ipv6.asc">FreeBSD-SA-04:06</ulink>.</para> + + <para>Two programming errors in <application>CVS</application> + have been fixed. They allow a server to overwrite arbitrary + files on the client, and a client to read arbitrary files + on the server when accessing remote CVS repositories. + More details can be found in security advisory <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.asc">FreeBSD-SA-04:07</ulink>. &merged;</para> </sect2> <sect2 id="kernel"> |