From 7b013a532026aec9abd00bae28bdcb084bbd689e Mon Sep 17 00:00:00 2001
From: gordon <gordon@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
Date: Thu, 8 Mar 2018 06:17:07 +0000
Subject: [PATCH] Bump newvers and document the updated patch for
 SA-18:01.ipsec

Approved by:	so
Security:	FreeBSD-SA-18:01.ipsec
Security:	CVE-2018-6916


git-svn-id: svn://svn.freebsd.org/base/releng/10.3@330631 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f
---
 UPDATING            | 4 ++++
 sys/conf/newvers.sh | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/UPDATING b/UPDATING
index bc6152842..ee53982a5 100644
--- a/UPDATING
+++ b/UPDATING
@@ -16,6 +16,10 @@ from older versions of FreeBSD, try WITHOUT_CLANG to bootstrap to the tip of
 stable/10, and then rebuild without this option. The bootstrap process from
 older version of current is a bit fragile.
 
+20180308	p28	FreeBSD-SA-18:01.ipsec [revised]
+
+	Fix ipsec validation and use-after-free.
+
 20180307	p27	FreeBSD-SA-18:01.ipsec
 			FreeBSD-SA-18:02.ntp
 			FreeBSD-EN-18:01.tzdata
diff --git a/sys/conf/newvers.sh b/sys/conf/newvers.sh
index 1a76473a3..be0f7991b 100644
--- a/sys/conf/newvers.sh
+++ b/sys/conf/newvers.sh
@@ -32,7 +32,7 @@
 
 TYPE="FreeBSD"
 REVISION="10.3"
-BRANCH="RELEASE-p27"
+BRANCH="RELEASE-p28"
 if [ "X${BRANCH_OVERRIDE}" != "X" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi
-- 
2.42.0