summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--release/doc/en_US.ISO8859-1/relnotes/article.sgml15
-rw-r--r--release/doc/en_US.ISO8859-1/relnotes/common/new.sgml15
2 files changed, 28 insertions, 2 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index a4cd693..7b4754c 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -103,7 +103,20 @@
url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:01.cvs.asc">FreeBSD-SA-03:01</ulink>.
&merged;</para>
- </sect2>
+ <para>A timing-based attack on <application>OpenSSL</application>,
+ which could allow a very powerful attacker access to plaintext
+ under certain circumstances, has been prevented via an upgrade
+ to <application>OpenSSL</application> 0.9.7. See security
+ advisory <ulink
+ url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:02.openssl.asc">FreeBSD-SA-03:02</ulink>
+ for more details. &merged;</para>
+
+ <para>The security and performance of the
+ <quote>syncookies</quote> feature has been improved to increase
+ the resistance of a &os; host to SYN flood denial-of-service
+ attacks. More details are given in security advisory <ulink
+ url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>. &merged;</para>
+ </sect2>
<sect2 id="kernel">
<title>Kernel Changes</title>
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index a4cd693..7b4754c 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -103,7 +103,20 @@
url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:01.cvs.asc">FreeBSD-SA-03:01</ulink>.
&merged;</para>
- </sect2>
+ <para>A timing-based attack on <application>OpenSSL</application>,
+ which could allow a very powerful attacker access to plaintext
+ under certain circumstances, has been prevented via an upgrade
+ to <application>OpenSSL</application> 0.9.7. See security
+ advisory <ulink
+ url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:02.openssl.asc">FreeBSD-SA-03:02</ulink>
+ for more details. &merged;</para>
+
+ <para>The security and performance of the
+ <quote>syncookies</quote> feature has been improved to increase
+ the resistance of a &os; host to SYN flood denial-of-service
+ attacks. More details are given in security advisory <ulink
+ url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>. &merged;</para>
+ </sect2>
<sect2 id="kernel">
<title>Kernel Changes</title>
OpenPOWER on IntegriCloud