1 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook V4.1-Based Extension//EN" [
2 <!ENTITY % articles.ent PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Articles Entity Set//EN">
5 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
8 <!-- Text constants which probably don't need to be changed.-->
10 <!ENTITY % include.historic "IGNORE">
11 <!ENTITY % no.include.historic "IGNORE">
16 <title>&os; &release.current; Release Notes</title>
18 <corpauthor>The &os; Project</corpauthor>
20 <pubdate>$FreeBSD$</pubdate>
33 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
36 <legalnotice id="trademarks" role="trademarks">
46 <para>The release notes for &os; &release.current; contain a summary
47 of the changes made to the &os; base system on the
48 &release.branch; development line.
49 This document lists applicable security advisories that were issued since
50 the last release, as well as significant changes to the &os;
52 Some brief remarks on upgrading are also presented.</para>
57 <title>Introduction</title>
59 <para>This document contains the release notes for &os;
61 describes recently added, changed, or deleted features of &os;.
62 It also provides some notes on upgrading
63 from previous versions of &os;.</para>
65 <![ %release.type.current [
67 <para>The &release.type; distribution to which these release notes
68 apply represents the latest point along the &release.branch; development
69 branch since &release.branch; was created. Information regarding pre-built, binary
70 &release.type; distributions along this branch
71 can be found at <ulink url="&release.url;"></ulink>.</para>
75 <![ %release.type.snapshot [
77 <para>The &release.type; distribution to which these release notes
78 apply represents a point along the &release.branch; development
79 branch between &release.prev; and the future &release.next;.
81 pre-built, binary &release.type; distributions along this branch
82 can be found at <ulink url="&release.url;"></ulink>.</para>
86 <![ %release.type.release [
88 <para>This distribution of &os; &release.current; is a
89 &release.type; distribution. It can be found at <ulink
90 url="&release.url;"></ulink> or any of its mirrors. More
91 information on obtaining this (or other) &release.type;
92 distributions of &os; can be found in the <ulink
93 url="&url.books.handbook;/mirrors.html"><quote>Obtaining
94 &os;</quote> appendix</ulink> to the <ulink
95 url="&url.books.handbook;/">&os; Handbook</ulink>.</para>
99 <para>All users are encouraged to consult the release errata before
100 installing &os;. The errata document is updated with
101 <quote>late-breaking</quote> information discovered late in the
102 release cycle or after the release. Typically, it contains
103 information on known bugs, security advisories, and corrections to
104 documentation. An up-to-date copy of the errata for &os;
105 &release.current; can be found on the &os; Web site.</para>
109 <title>What's New</title>
111 <para>This section describes the most user-visible new or changed
112 features in &os; since &release.prev;.</para>
114 <para>Typical release note items document recent security
115 advisories issued after &release.prev;, new drivers or hardware
116 support, new commands or options, major bug fixes, or
117 contributed software upgrades. They may also list changes to
118 major ports/packages or release engineering practices. Clearly
119 the release notes cannot list every single change made to &os;
120 between releases; this document focuses primarily on security
121 advisories, user-visible changes, and major architectural
124 <sect2 id="security">
125 <title>Security Advisories</title>
127 <para>Problems described in the following security advisories have
128 been fixed. For more information, consult the individual
129 advisories available from
130 <ulink url="http://security.FreeBSD.org/"></ulink>.</para>
132 <informaltable frame="none" pgwide="0">
134 <colspec colwidth="1*">
135 <colspec colwidth="1*">
136 <colspec colwidth="3*">
139 <entry>Advisory</entry>
147 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:01.lukemftpd.asc"
148 >SA-09:01.lukemftpd</ulink></entry>
149 <entry>07 January 2009</entry>
150 <entry><para>Cross-site request forgery in
151 &man.lukemftpd.8;</para></entry>
155 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:02.openssl.asc"
156 >SA-09:02.openssl</ulink></entry>
157 <entry>07 January 2009</entry>
158 <entry><para>OpenSSL incorrectly checks for malformed
159 signatures</para></entry>
163 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:03.ntpd.asc"
164 >SA-09:03.ntpd</ulink></entry>
165 <entry>13 January 2009</entry>
166 <entry><para>ntpd cryptographic signature
167 bypass</para></entry>
171 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:04.bind.asc"
172 >SA-09:04.bind</ulink></entry>
173 <entry>13 January 2009</entry>
174 <entry><para>BIND DNSSEC incorrect checks for
175 malformed signatures</para></entry>
179 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:05.telnetd.asc"
180 >SA-09:05.telnetd</ulink></entry>
181 <entry>16 February 2009</entry>
182 <entry><para>telnetd code execution
183 vulnerability</para></entry>
187 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:06.ktimer.asc"
188 >SA-09:06.ktimer</ulink></entry>
189 <entry>23 March 2009</entry>
190 <entry><para>Local privilege escalation</para></entry>
194 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:07.libc.asc"
195 >SA-09:07.libc</ulink></entry>
196 <entry>04 April 2009</entry>
197 <entry><para>Information leak in &man.db.3;</para></entry>
201 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-09:08.openssl.asc"
202 >SA-09:08.openssl</ulink></entry>
203 <entry>22 April 2009</entry>
204 <entry><para>Remotely exploitable crash in
205 OpenSSL</para></entry>
213 <title>Kernel Changes</title>
218 <title>Boot Loader Changes</title>
224 <title>Hardware Support</title>
229 <title>Multimedia Support</title>
235 <title>Network Interface Support</title>
242 <sect3 id="net-proto">
243 <title>Network Protocols</title>
250 <title>Disks and Storage</title>
257 <title>File Systems</title>
263 <sect2 id="userland">
264 <title>Userland Changes</title>
268 <sect3 id="rc-scripts">
269 <title><filename>/etc/rc.d</filename> Scripts</title>
276 <title>Contributed Software</title>
282 <title>Ports/Packages Collection Infrastructure</title>
289 <title>Release Engineering and Integration</title>
295 <title>Documentation</title>
302 <title>Upgrading from previous releases of &os;</title>
304 <para arch="amd64,i386">Beginning with &os; 6.2-RELEASE, binary
305 upgrades between RELEASE versions (and snapshots of the various
306 security branches) are supported using the
307 &man.freebsd-update.8; utility. The binary upgrade procedure
308 will update unmodified userland utilities, as well as unmodified
309 GENERIC or SMP kernels distributed as a part of an official &os;
310 release. The &man.freebsd-update.8; utility requires that the
311 host being upgraded have Internet connectivity.</para>
313 <para>An older form of binary upgrade is supported through the
314 <command>Upgrade</command> option from the main
315 &man.sysinstall.8; menu on CDROM distribution media. This type
316 of binary upgrade may be useful on non-&arch.i386;,
317 non-&arch.amd64; machines or on systems with no Internet
320 <para>Source-based upgrades (those based on recompiling the &os;
321 base system from source code) from previous versions are
322 supported, according to the instructions in
323 <filename>/usr/src/UPDATING</filename>.</para>
326 <para>Upgrading &os; should, of course, only be attempted after
327 backing up <emphasis>all</emphasis> data and configuration