1 <?xml version="1.0" encoding="iso-8859-1"?>
2 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN"
3 "../../../share/xml/freebsd50.dtd" [
4 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent">
8 FreeBSD errata document. Unlike some of the other RELNOTESng
9 files, this file should remain as a single SGML file, so that
10 the dollar FreeBSD dollar header has a meaningful modification
11 time. This file is all but useless without a datestamp on it,
12 so we'll take some extra care to make sure it has one.
14 (If we didn't do this, then the file with the datestamp might
15 not be the one that received the last change in the document.)
18 <article xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0">
19 <info><title>&os; &release.current; Errata</title>
26 <pubdate>$FreeBSD$</pubdate>
30 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
33 <legalnotice xml:id="trademarks" role="trademarks">
41 <para>This document lists errata items for &os; &release.current;,
42 containing significant information discovered after the release
43 or too late in the release cycle to be otherwise included in the
44 release documentation.
45 This information includes security advisories, as well as news
46 relating to the software or documentation that could affect its
47 operation or usability. An up-to-date version of this document
48 should always be consulted before installing this version of
51 <para>This errata document for &os; &release.current;
52 will be maintained until the release of &os; &release.next;.</para>
56 <sect1 xml:id="intro">
57 <title>Introduction</title>
59 <para>This errata document contains <quote>late-breaking news</quote>
60 about &os; &release.current;
61 Before installing this version, it is important to consult this
62 document to learn about any post-release discoveries or problems
63 that may already have been found and fixed.</para>
65 <para>Any version of this errata document actually distributed
66 with the release (for example, on a CDROM distribution) will be
67 out of date by definition, but other copies are kept updated on
68 the Internet and should be consulted as the <quote>current
69 errata</quote> for this release. These other copies of the
70 errata are located at <uri xlink:href="http://www.FreeBSD.org/releases/">http://www.FreeBSD.org/releases/</uri>, plus any sites
71 which keep up-to-date mirrors of this location.</para>
73 <para>Source and binary snapshots of &os; &release.branch; also
74 contain up-to-date copies of this document (as of the time of
77 <para>For a list of all &os; CERT security advisories, see <uri xlink:href="http://www.FreeBSD.org/security/">http://www.FreeBSD.org/security/</uri> or <uri xlink:href="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/">ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/</uri>.</para>
81 <sect1 xml:id="security">
82 <title>Security Advisories</title>
84 <para>Problems described in the following security advisories have
85 been fixed in &release.current;. For more information, consult
86 the individual advisories available from
87 <uri xlink:href="http://security.FreeBSD.org/">http://security.FreeBSD.org/</uri>.</para>
89 <informaltable frame="none" pgwide="1">
91 <colspec colwidth="1*"/>
92 <colspec colwidth="1*"/>
93 <colspec colwidth="3*"/>
96 <entry>Advisory</entry>
104 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:01.bsnmpd.asc">SA-14:01.bsnmpd</link></entry>
105 <entry>1 January 2014</entry>
106 <entry><para>Fix bsnmpd remote denial of service
107 vulnerability</para></entry>
111 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:02.ntpd.asc">SA-14:02.ntpd</link></entry>
112 <entry>1 January 2014</entry>
113 <entry><para>Fix ntpd distributed reflection Denial of
114 Service vulnerability</para></entry>
118 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:03.bind.asc">SA-14:03.ntpd</link></entry>
119 <entry>1 January 2014</entry>
120 <entry><para>Fix BIND remote denial of service
121 vulnerability</para></entry>
125 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:05.nfsserver.asc">SA-14:05.nfsserver</link></entry>
126 <entry>8 April 2014</entry>
127 <entry><para>Fix NFS deadlock vulnerability</para></entry>
131 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:06.openssl.asc">SA-14:06.openssl</link></entry>
132 <entry>8 April 2014</entry>
133 <entry><para>Fix ECDSA Cache Side-channel
134 Attack</para></entry>
138 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:08.tcp.asc">SA-14:08.tcp</link></entry>
139 <entry>30 April 2014</entry>
140 <entry><para>Fix TCP reassembly
141 vulnerability</para></entry>
145 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:11.sendmail.asc">SA-14:11.sendmail</link></entry>
146 <entry>3 June 2014</entry>
147 <entry><para>Fix sendmail improper close-on-exec flag
148 handling</para></entry>
152 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:12.ktrace.asc">SA-14:12.ktrace</link></entry>
153 <entry>3 June 2014</entry>
154 <entry><para>Fix ktrace memory disclosure</para></entry>
158 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:13.pam.asc">SA-14:13.pam</link></entry>
159 <entry>3 June 2014</entry>
160 <entry><para>Fix incorrect error handling in PAM policy
161 parser</para></entry>
165 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:14.openssl.asc">SA-14:14.openssl</link></entry>
166 <entry>5 June 2014</entry>
167 <entry><para>Multiple vulnerabilities</para></entry>
171 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:16.file.asc">SA-14:16.file</link></entry>
172 <entry>24 June 2014</entry>
173 <entry><para>Multiple vulnerabilities</para></entry>
177 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:17.kmem.asc">SA-14:17.kmem</link></entry>
178 <entry>8 July 2014</entry>
179 <entry><para>Kernel memory disclosure in control messages
180 and SCTP notifications</para></entry>
184 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc">SA-14:18.openssl</link></entry>
185 <entry>9 September 2014</entry>
186 <entry><para>Multiple vulnerabilities</para></entry>
193 <sect1 xml:id="late-news">
194 <title>Late-Breaking News</title>
196 <para>No late-breaking news.</para>