Rewrite SA-05:01.telnet entry based on nectar's original commit

message, which is more accurate and less clunky than my version.
author: bmah <bmah@FreeBSD.org> 2005-03-31 16:02:12 +0000
committer: bmah <bmah@FreeBSD.org> 2005-03-31 16:02:12 +0000
commit: 7c6be5992d65a6871412e54c1010c5c57fe029c6 (patch)
tree: 408b538b6a323572708e238c5d8abae5bc3f06a9 /release
parent: b676131a8c7afbe8e0a7afac7b74f23cf4115667 (diff)
download: FreeBSD-src-7c6be5992d65a6871412e54c1010c5c57fe029c6.zip
FreeBSD-src-7c6be5992d65a6871412e54c1010c5c57fe029c6.tar.gz
2 files changed, 10 insertions, 8 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index 3017df6..98b723b 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -128,10 +128,11 @@
       <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:17.procfs.asc">FreeBSD-SA-04:17.procfs</ulink>.
       &merged;</para>
 
-    <para>A buffer overflow in the TELNET client program, which could
-      allow an attacker to cause the execution of arbitrary code with
-      the privileges of the user invoking &man.telnet.1;, has been
-      fixed.  More information can be found in security advisory
+    <para>Two buffer overflows in the TELNET client program have been
+      corrected.  They could have allowed a malicious TELNET server or
+      an active network attacker to cause &man.telnet.1; to execute
+      arbitrary code with the privileges of the user running it.
+      More information can be found in security advisory
       <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:01.telnet.asc">FreeBSD-SA-05:01.telnet</ulink>.
       &merged;</para>
 
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index 3017df6..98b723b 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -128,10 +128,11 @@
       <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:17.procfs.asc">FreeBSD-SA-04:17.procfs</ulink>.
       &merged;</para>
 
-    <para>A buffer overflow in the TELNET client program, which could
-      allow an attacker to cause the execution of arbitrary code with
-      the privileges of the user invoking &man.telnet.1;, has been
-      fixed.  More information can be found in security advisory
+    <para>Two buffer overflows in the TELNET client program have been
+      corrected.  They could have allowed a malicious TELNET server or
+      an active network attacker to cause &man.telnet.1; to execute
+      arbitrary code with the privileges of the user running it.
+      More information can be found in security advisory
       <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:01.telnet.asc">FreeBSD-SA-05:01.telnet</ulink>.
       &merged;</para>
author	bmah <bmah@FreeBSD.org>	2005-03-31 16:02:12 +0000
committer	bmah <bmah@FreeBSD.org>	2005-03-31 16:02:12 +0000
commit	7c6be5992d65a6871412e54c1010c5c57fe029c6 (patch)
tree	408b538b6a323572708e238c5d8abae5bc3f06a9 /release
parent	b676131a8c7afbe8e0a7afac7b74f23cf4115667 (diff)
download	FreeBSD-src-7c6be5992d65a6871412e54c1010c5c57fe029c6.zip FreeBSD-src-7c6be5992d65a6871412e54c1010c5c57fe029c6.tar.gz