New release note: SA-02:18.

author: bmah <bmah@FreeBSD.org> 2002-03-19 00:19:53 +0000
committer: bmah <bmah@FreeBSD.org> 2002-03-19 00:19:53 +0000
commit: e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a (patch)
tree: d153d0d2874d0ebe95de3d3ed50080758781761a /release
parent: 0457205a00ecabf357f9281fc21809c4271af21d (diff)
download: FreeBSD-src-e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a.zip
FreeBSD-src-e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a.tar.gz
2 files changed, 22 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index 6dfa3a9..f088a88 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -1640,6 +1640,17 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting>
         url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.asc">FreeBSD-SA-02:13</ulink>.)
       &merged;</para>
 
+    <para>A programming error in <application>zlib</application> could
+      result in attempts to free memory multiple times.  The
+      &man.malloc.3;/&man.free.3; routines used in &os; are not
+      vulnerable to this error, but applications receiving
+      specially-crafted blocks of invalid compressed data could
+      be made to function incorrectly or abort.  This
+      <application>zlib</application> bug has been fixed.  For a
+      workaround and solutions, see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:18.zlib.asc">FreeBSD-SA-02:18</ulink>.
+      &merged;</para>
+
   </sect2>
   <sect2 id="userland">
     <title>Userland Changes</title>
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index 6dfa3a9..f088a88 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -1640,6 +1640,17 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting>
         url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.asc">FreeBSD-SA-02:13</ulink>.)
       &merged;</para>
 
+    <para>A programming error in <application>zlib</application> could
+      result in attempts to free memory multiple times.  The
+      &man.malloc.3;/&man.free.3; routines used in &os; are not
+      vulnerable to this error, but applications receiving
+      specially-crafted blocks of invalid compressed data could
+      be made to function incorrectly or abort.  This
+      <application>zlib</application> bug has been fixed.  For a
+      workaround and solutions, see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:18.zlib.asc">FreeBSD-SA-02:18</ulink>.
+      &merged;</para>
+
   </sect2>
   <sect2 id="userland">
     <title>Userland Changes</title>
author	bmah <bmah@FreeBSD.org>	2002-03-19 00:19:53 +0000
committer	bmah <bmah@FreeBSD.org>	2002-03-19 00:19:53 +0000
commit	e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a (patch)
tree	d153d0d2874d0ebe95de3d3ed50080758781761a /release
parent	0457205a00ecabf357f9281fc21809c4271af21d (diff)
download	FreeBSD-src-e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a.zip FreeBSD-src-e59bbf2ec61b1cd77703e49c0f5519f0d41ac50a.tar.gz