2 FreeBSD errata document. Unlike some of the other RELNOTESng
3 files, this file should remain as a single SGML file, so that
4 the dollar FreeBSD dollar header has a meaningful modification
5 time. This file is all but useless without a datestamp on it,
6 so we'll take some extra care to make sure it has one.
8 (If we didn't do this, then the file with the datestamp might
9 not be the one that received the last change in the document.)
13 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook V4.1-Based Extension//EN" [
14 <!ENTITY % articles.ent PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Articles Entity Set//EN">
17 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
19 <!ENTITY release.bugfix "8.2-RELEASE">
25 <![ %release.type.current [
28 <![ %release.type.snapshot [
31 <![ %release.type.release [
40 <pubdate>$FreeBSD$</pubdate>
44 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
47 <legalnotice id="trademarks" role="trademarks">
56 <para>This document lists errata items for &os;
57 <![ %release.type.current [
60 <![ %release.type.snapshot [
63 <![ %release.type.release [
66 containing significant information discovered after the release
67 or too late in the release cycle to be otherwise included in the
68 release documentation.
69 This information includes security advisories, as well as news
70 relating to the software or documentation that could affect its
71 operation or usability. An up-to-date version of this document
72 should always be consulted before installing this version of
75 <para>This errata document for &os;
76 <![ %release.type.current [
79 <![ %release.type.snapshot [
82 <![ %release.type.release [
85 will be maintained until the release of &os; &release.next;.</para>
89 <title>Introduction</title>
91 <para>This errata document contains <quote>late-breaking news</quote>
93 <![ %release.type.current [
96 <![ %release.type.snapshot [
99 <![ %release.type.release [
102 Before installing this version, it is important to consult this
103 document to learn about any post-release discoveries or problems
104 that may already have been found and fixed.</para>
106 <para>Any version of this errata document actually distributed
107 with the release (for example, on a CDROM distribution) will be
108 out of date by definition, but other copies are kept updated on
109 the Internet and should be consulted as the <quote>current
110 errata</quote> for this release. These other copies of the
111 errata are located at <ulink
112 url="http://www.FreeBSD.org/releases/"></ulink>, plus any sites
113 which keep up-to-date mirrors of this location.</para>
115 <para>Source and binary snapshots of &os; &release.branch; also
116 contain up-to-date copies of this document (as of the time of
117 the snapshot).</para>
119 <para>For a list of all &os; CERT security advisories, see <ulink
120 url="http://www.FreeBSD.org/security/"></ulink> or <ulink
121 url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/"></ulink>.</para>
124 <sect1 id="security">
125 <title>Security Advisories</title>
127 <para>No advisory.</para>
130 <para>The following security advisories pertain to &os; &release.bugfix;.
131 For more information, consult the individual advisories available from
132 <ulink url="http://security.FreeBSD.org/"></ulink>.</para>
134 <informaltable frame="none" pgwide="1">
136 <colspec colwidth="1*">
137 <colspec colwidth="1*">
138 <colspec colwidth="3*">
141 <entry>Advisory</entry>
149 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:15.ssl.asc"
150 >SA-09:15.ssl</ulink></entry>
151 <entry>3 Dec 2009</entry>
152 <entry><para>SSL protocol flaw</para></entry>
160 <sect1 id="open-issues">
161 <title>Open Issues</title>
163 <para>No open issue.</para>
166 <sect1 id="late-news">
167 <title>Late-Breaking News and Corrections</title>
169 <para>A bug in <application>OpenSSL</application> that could cause
170 it to parse past the end of the message was found at the late
171 stage of &release.bugfix; release process. The &release.bugfix;
172 includes a fix for this issue by importing relevant parts from
173 the OpenSSL CVS. This could be triggered by an incorrectly
174 formatted ClientHello SSL/TLS handshake messages. The details
175 can be found at <ulink
176 url="http://www.openssl.org/news/secadv_20110208.txt"></ulink>.</para>