diff options
Diffstat (limited to 'release')
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/article.sgml | 16 | ||||
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 16 |
2 files changed, 32 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index 191ee72..a74040c 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -1911,6 +1911,22 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting> messages, has been fixed. See security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:28.resolv.asc">FreeBSD-SA-02:28</ulink> for more details. &merged;</para> + + <para>A buffer overflow in &man.tcpdump.1;, which could be triggered by + badly-formed NFS packets, has been fixed. See security advisory + <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:29.tcpdump.asc">FreeBSD-SA-02:29</ulink> + for more details. &merged;</para> + + <para>&man.ktrace.1; can no longer trace the operation of formerly + privileged processes; this prevents the leakage of sensitive + information that the process could have obtained before + abandoning its privileges. For a discussion of this issue, see + security advisory + <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:30.ktrace.asc">FreeBSD-SA-02:30</ulink> + for more details. &merged;</para> + </sect2> <sect2 id="userland"> diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index 191ee72..a74040c 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -1911,6 +1911,22 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting> messages, has been fixed. See security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:28.resolv.asc">FreeBSD-SA-02:28</ulink> for more details. &merged;</para> + + <para>A buffer overflow in &man.tcpdump.1;, which could be triggered by + badly-formed NFS packets, has been fixed. See security advisory + <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:29.tcpdump.asc">FreeBSD-SA-02:29</ulink> + for more details. &merged;</para> + + <para>&man.ktrace.1; can no longer trace the operation of formerly + privileged processes; this prevents the leakage of sensitive + information that the process could have obtained before + abandoning its privileges. For a discussion of this issue, see + security advisory + <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:30.ktrace.asc">FreeBSD-SA-02:30</ulink> + for more details. &merged;</para> + </sect2> <sect2 id="userland"> |