From 9a6427ca457f977af7ec3525d94e9cecf6c8ed1b Mon Sep 17 00:00:00 2001
From: hrs <hrs@FreeBSD.org>
Date: Sat, 17 Apr 2004 17:06:28 +0000
Subject: New release note: 	SA-04:07.cvs.

---
 release/doc/en_US.ISO8859-1/relnotes/article.sgml    | 7 +++++++
 release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 7 +++++++
 2 files changed, 14 insertions(+)

(limited to 'release')

diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index 33415df..fe24674 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -174,6 +174,13 @@
       mechanisms, or privilege escalation.
       More details can be found in security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:06.ipv6.asc">FreeBSD-SA-04:06</ulink>.</para>
+
+    <para>Two programming errors in <application>CVS</application>
+      have been fixed.  They allow a server to overwrite arbitrary
+      files on the client, and a client to read arbitrary files
+      on the server when accessing remote CVS repositories.
+      More details can be found in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.asc">FreeBSD-SA-04:07</ulink>. &merged;</para>
   </sect2>
 
   <sect2 id="kernel">
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index 33415df..fe24674 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -174,6 +174,13 @@
       mechanisms, or privilege escalation.
       More details can be found in security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:06.ipv6.asc">FreeBSD-SA-04:06</ulink>.</para>
+
+    <para>Two programming errors in <application>CVS</application>
+      have been fixed.  They allow a server to overwrite arbitrary
+      files on the client, and a client to read arbitrary files
+      on the server when accessing remote CVS repositories.
+      More details can be found in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.asc">FreeBSD-SA-04:07</ulink>. &merged;</para>
   </sect2>
 
   <sect2 id="kernel">
-- 
cgit v1.1