Regen from article.sgml 1.1.2.88.

svn path=/www/; revision=14900
2002-11-13 21:48:55 +00:00 · 2002-11-13 21:48:55 +00:00 · 3fb607a5a5 · 2020-12-08 03:00:23 +00:00
commit 3fb607a5a5
parent ed3e7da25f
1 changed files with 31 additions and 3 deletions
--- a/en/releases/4.7R/errata.html
+++ b/en/releases/4.7R/errata.html
@ -22,7 +22,7 @@

        <p class="PUBDATE">$FreeBSD:
        src/release/doc/en_US.ISO8859-1/errata/article.sgml,v
-        1.1.2.87 2002/10/18 19:08:57 bmah Exp $<br>
+        1.1.2.88 2002/11/13 19:54:39 bmah Exp $<br>
        </p>
        <hr>
      </div>
@ -83,13 +83,41 @@
        <h1 class="SECT1"><a name="AEN25">2 Security
        Advisories</a></h1>

-        <p>No active security advisories.</p>
+        <p>Buffer overflows in kadmind(8) and k5admin could
+        potentially cause the administrative server to execute
+        arbitrary code. Bugfix and workaround information can be
+        found in security advisory <a href=
+        "ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:40.kadmind.asc"
+         target="_top">FreeBSD-SA-02:40</a>.</p>
+
+        <p>Errors in <a href=
+        "http://www.FreeBSD.org/cgi/man.cgi?query=smrsh&sektion=8&manpath=FreeBSD+4.6-stable">
+        <span class="CITEREFENTRY"><span class=
+        "REFENTRYTITLE">smrsh</span>(8)</span></a>, which could
+        allow users to circumvent restrictions on what programs can
+        be executed, were fixed in FreeBSD 4.7-RELEASE. Because the
+        applicable security (<a href=
+        "ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:41.smrsh.asc"
+         target="_top">FreeBSD-SA-02:41</a>) was not issued after
+        the release, this fact was not included in the release
+        notes.</p>
+
+        <p>Buffer overflows in the DNS <a href=
+        "http://www.FreeBSD.org/cgi/man.cgi?query=resolver&sektion=3&manpath=FreeBSD+4.6-stable">
+        <span class="CITEREFENTRY"><span class=
+        "REFENTRYTITLE">resolver</span>(3)</span></a>, which could
+        cause some applications to fail, have been corrected. This
+        change was not mentioned in the release notes, as the
+        applicable security advisory (<a href=
+        "ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:42.resolv.asc"
+         target="_top">FreeBSD-SA-02:42</a>) was not issued until
+        after the release.</p>
      </div>

      <div class="SECT1">
        <hr>

-        <h1 class="SECT1"><a name="AEN28">3 Late-Breaking
+        <h1 class="SECT1"><a name="AEN39">3 Late-Breaking
        News</a></h1>

        <p>Due to licensing issues uncovered late in FreeBSD