1 <?xml version="1.0" encoding="iso-8859-1" standalone="no"?>
2 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V4.2-Based Extension//EN" [
3 <!ENTITY % entities PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Entity Set//EN">
6 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
9 <![ %release.type.current [
10 <!ENTITY release "&release.current;">
12 <![ %release.type.snapshot [
13 <!ENTITY release "&release.prev;">
15 <![ %release.type.release [
16 <!ENTITY release "&release.current;">
17 <!ENTITY release.bugfix "8.2-RELEASE">
22 FreeBSD errata document. Unlike some of the other RELNOTESng
23 files, this file should remain as a single SGML file, so that
24 the dollar FreeBSD dollar header has a meaningful modification
25 time. This file is all but useless without a datestamp on it,
26 so we'll take some extra care to make sure it has one.
28 (If we didn't do this, then the file with the datestamp might
29 not be the one that received the last change in the document.)
35 <title>&os; &release; Errata </title>
41 <pubdate>$FreeBSD$</pubdate>
45 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
48 <legalnotice id="trademarks" role="trademarks">
57 <para>This document lists errata items for &os;
58 <![ %release.type.current [
61 <![ %release.type.snapshot [
64 <![ %release.type.release [
67 containing significant information discovered after the release
68 or too late in the release cycle to be otherwise included in the
69 release documentation.
70 This information includes security advisories, as well as news
71 relating to the software or documentation that could affect its
72 operation or usability. An up-to-date version of this document
73 should always be consulted before installing this version of
76 <para>This errata document for &os;
77 <![ %release.type.current [
80 <![ %release.type.snapshot [
83 <![ %release.type.release [
86 will be maintained until the release of &os; &release.next;.</para>
90 <title>Introduction</title>
92 <para>This errata document contains <quote>late-breaking news</quote>
94 <![ %release.type.current [
97 <![ %release.type.snapshot [
100 <![ %release.type.release [
103 Before installing this version, it is important to consult this
104 document to learn about any post-release discoveries or problems
105 that may already have been found and fixed.</para>
107 <para>Any version of this errata document actually distributed
108 with the release (for example, on a CDROM distribution) will be
109 out of date by definition, but other copies are kept updated on
110 the Internet and should be consulted as the <quote>current
111 errata</quote> for this release. These other copies of the
112 errata are located at <ulink
113 url="http://www.FreeBSD.org/releases/"></ulink>, plus any sites
114 which keep up-to-date mirrors of this location.</para>
116 <para>Source and binary snapshots of &os; &release.branch; also
117 contain up-to-date copies of this document (as of the time of
118 the snapshot).</para>
120 <para>For a list of all &os; CERT security advisories, see <ulink
121 url="http://www.FreeBSD.org/security/"></ulink> or <ulink
122 url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/"></ulink>.</para>
125 <sect1 id="security">
126 <title>Security Advisories</title>
128 <para>No advisory.</para>
131 <para>The following security advisories pertain to &os; &release.bugfix;.
132 For more information, consult the individual advisories available from
133 <ulink url="http://security.FreeBSD.org/"></ulink>.</para>
135 <informaltable frame="none" pgwide="1">
137 <colspec colwidth="1*"/>
138 <colspec colwidth="1*"/>
139 <colspec colwidth="3*"/>
142 <entry>Advisory</entry>
150 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:15.ssl.asc"
151 >SA-09:15.ssl</ulink></entry>
152 <entry>3 Dec 2009</entry>
153 <entry><para>SSL protocol flaw</para></entry>
161 <sect1 id="open-issues">
162 <title>Open Issues</title>
164 <para>No open issue.</para>
167 <sect1 id="late-news">
168 <title>Late-Breaking News and Corrections</title>
170 <para>A bug in <application>OpenSSL</application> that could cause
171 it to parse past the end of the message was found at the late
172 stage of &release.bugfix; release process. The &release.bugfix;
173 includes a fix for this issue by importing relevant parts from
174 the OpenSSL CVS. This could be triggered by an incorrectly
175 formatted ClientHello SSL/TLS handshake messages. The details
176 can be found at <ulink
177 url="http://www.openssl.org/news/secadv_20110208.txt"></ulink>.</para>