2 FreeBSD errata document. Unlike some of the other RELNOTESng
3 files, this file should remain as a single SGML file, so that
4 the dollar FreeBSD dollar header has a meaningful modification
5 time. This file is all but useless without a datestamp on it,
6 so we'll take some extra care to make sure it has one.
8 (If we didn't do this, then the file with the datestamp might
9 not be the one that received the last change in the document.)
13 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook V4.1-Based Extension//EN" [
14 <!ENTITY % articles.ent PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Articles Entity Set//EN">
17 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
24 <![ %release.type.current [
27 <![ %release.type.snapshot [
30 <![ %release.type.release [
39 <pubdate>$FreeBSD$</pubdate>
43 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
46 <legalnotice id="trademarks" role="trademarks">
55 <para>This document lists errata items for &os;
56 <![ %release.type.current [
59 <![ %release.type.snapshot [
62 <![ %release.type.release [
65 containing significant information discovered after the release
66 or too late in the release cycle to be otherwise included in the
67 release documentation.
68 This information includes security advisories, as well as news
69 relating to the software or documentation that could affect its
70 operation or usability. An up-to-date version of this document
71 should always be consulted before installing this version of
74 <para>This errata document for &os;
75 <![ %release.type.current [
78 <![ %release.type.snapshot [
81 <![ %release.type.release [
84 will be maintained until the release of &os; &release.next;.</para>
88 <title>Introduction</title>
90 <para>This errata document contains <quote>late-breaking news</quote>
92 <![ %release.type.current [
95 <![ %release.type.snapshot [
98 <![ %release.type.release [
101 Before installing this version, it is important to consult this
102 document to learn about any post-release discoveries or problems
103 that may already have been found and fixed.</para>
105 <para>Any version of this errata document actually distributed
106 with the release (for example, on a CDROM distribution) will be
107 out of date by definition, but other copies are kept updated on
108 the Internet and should be consulted as the <quote>current
109 errata</quote> for this release. These other copies of the
110 errata are located at <ulink
111 url="http://www.FreeBSD.org/releases/"></ulink>, plus any sites
112 which keep up-to-date mirrors of this location.</para>
114 <para>Source and binary snapshots of &os; &release.branch; also
115 contain up-to-date copies of this document (as of the time of
116 the snapshot).</para>
118 <para>For a list of all &os; CERT security advisories, see <ulink
119 url="http://www.FreeBSD.org/security/"></ulink> or <ulink
120 url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/"></ulink>.</para>
124 <sect1 id="security">
125 <title>Security Advisories</title>
127 <para>Problems described in the following security advisories have
128 been fixed in &release.current;. For more information, consult
129 the individual advisories available from <ulink
130 url="http://security.FreeBSD.org/"></ulink>.</para>
132 <informaltable frame="none" pgwide="1">
134 <colspec colwidth="1*">
135 <colspec colwidth="1*">
136 <colspec colwidth="3*">
139 <entry>Advisory</entry>
147 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc"
148 >SA-12:01.openssl</ulink></entry>
149 <entry>3 May 2012</entry>
150 <entry><para>OpenSSL multiple vulnerabilities</para></entry>
154 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:02.crypt.asc"
155 >SA-12:02.crypt</ulink></entry>
156 <entry>30 May 2012</entry>
157 <entry><para>Incorrect <function>crypt()</function> hashing</para></entry>
161 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:03.bind.asc"
162 >SA-12:03.bind</ulink></entry>
163 <entry>12 June 2012</entry>
164 <entry><para>Incorrect handling of zero-length RDATA fields in &man.named.8;</para></entry>
168 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:04.sysret.asc"
169 >SA-12:04.sysret</ulink></entry>
170 <entry>12 June 2012</entry>
171 <entry><para>Privilege escalation when returning from kernel</para></entry>
175 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:05.bind.asc"
176 >SA-12:05.bind</ulink></entry>
177 <entry>6 August 2012</entry>
178 <entry><para>&man.named.8; DNSSEC validation Denial of Service</para></entry>
182 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:06.bind.asc"
183 >SA-12:06.bind</ulink></entry>
184 <entry>22 November 2012</entry>
185 <entry><para>Multiple Denial of Service vulnerabilities with &man.named.8;</para></entry>
189 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:07.hostapd.asc"
190 >SA-12:07.hostapd</ulink></entry>
191 <entry>22 November 2012</entry>
192 <entry><para>Insufficient message length validation for EAP-TLS messages</para></entry>
196 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:08.linux.asc"
197 >SA-12:08.linux</ulink></entry>
198 <entry>22 November 2012</entry>
199 <entry><para>Linux compatibility layer input validation error</para></entry>
206 <sect1 id="late-news">
207 <title>Late-Breaking News</title>
209 <para>No news.</para>