summaryrefslogtreecommitdiffstats
path: root/release/doc/en_US.ISO8859-1/relnotes/article.sgml
diff options
context:
space:
mode:
Diffstat (limited to 'release/doc/en_US.ISO8859-1/relnotes/article.sgml')
-rw-r--r--release/doc/en_US.ISO8859-1/relnotes/article.sgml7
1 files changed, 7 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index 8e55594..8e1aee3 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -807,6 +807,13 @@
variable limits the amount of memory that can be consumed by IPv4
packet fragments, which defends against some denial of service
attacks.</para>
+
+ <para>A vulnerability in the &man.fts.3; routines (used by
+ applications for recursively traversing a filesystem) could
+ allow a program to operate on files outside the intended directory
+ hierarchy. This bug has been fixed (see security advisory
+ FreeBSD-SA-01:40). &merged;</para>
+
</sect2>
<sect2>
<title>Userland Changes</title>
OpenPOWER on IntegriCloud