os/doc
3
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Release notes documentation:

Browse source 
- Populate the Security Advisories and Errata Notices sections
  with the contents of the 12.0R/share/xml/{security,errata}.xml
  files.

Sponsored by:	Rubicon Communications, LLC (Netgate)
This commit is contained in:
Glen Barber 2019-08-07 20:16:51 +00:00
parent e5bd83895d
commit 7ff852194d
Notes: svn2git 2020-12-08 03:00:23 +00:00 
svn path=/head/; revision=53301
1 changed files with 300 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

302
en_US.ISO8859-1/htdocs/releases/12.1R/relnotes/relnotes.xml
View file

@ -137,13 +137,311 @@
<sect2 xml:id="security">
<title>Security Advisories</title>
&security;
<informaltable frame="none" pgwide="1">
<tgroup cols="3">
<colspec colwidth="40%"/>
<colspec colwidth="30%"/>
<colspec colwidth="30%"/>
<thead>
<row>
<entry>Advisory</entry>
<entry>Date</entry>
<entry>Topic</entry>
</row>
</thead>
<tbody>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-18:15.bootpd.asc">FreeBSD-SA-18:15.bootpd</link></entry>
<entry>19&nbsp;December&nbsp;2018</entry>
<entry><para>Buffer overflow</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:01.syscall.asc">FreeBSD-SA-19:01.syscall</link></entry>
<entry>5&nbsp;February&nbsp;2019</entry>
<entry><para>Kernel data register leak</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:02.fd.asc">FreeBSD-SA-19:02.fd</link></entry>
<entry>5&nbsp;February&nbsp;2019</entry>
<entry><para>File description reference count
leak</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:03.wpa.asc">FreeBSD-SA-19:03.wpa</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>Multiple vulnerabilities</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:04.ntp.asc">FreeBSD-SA-19:04.ntp</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>Authenticated denial of service in
&man.ntpd.8;</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:05.pf.asc">FreeBSD-SA-19:05.pf</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>IPv6 fragment reassembly panic in
&man.pf.4;</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:06.pf.asc">FreeBSD-SA-19:06.pf</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>ICMP/ICMP6 packet filter bypass in
&man.pf.4;</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:07.mds.asc">FreeBSD-SA-19:07.mds</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>Microarchitectural Data
Sampling</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:08.rack.asc">FreeBSD-SA-19:08.rack</link></entry>
<entry>19&nbsp;June&nbsp;2019</entry>
<entry><para>Resource exhaustion in non-default RACK TCP
stack</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:09.iconv.asc">FreeBSD-SA-19:09.iconv</link></entry>
<entry>2&nbsp;July&nbsp;2019</entry>
<entry><para>&man.iconv.3; buffer
overflow</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:10.ufs.asc">FreeBSD-SA-19:10.ufs</link></entry>
<entry>2&nbsp;July&nbsp;2019</entry>
<entry><para>Kernel stack disclosure</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:11.cd_ioctl.asc">FreeBSD-SA-19:11.cd_ioctl</link></entry>
<entry>2&nbsp;July&nbsp;2019</entry>
<entry><para>Privilege escalation in
&man.cd.4;</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:12.telnet.asc">FreeBSD-SA-19:12.telnet</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>Multiple vulnerabilities</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:13.pts.asc">FreeBSD-SA-19:13.pts</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>Write-after-free
vulnerability</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:15.mqueuefs.asc">FreeBSD-SA-19:15.mqueuefs</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>Reference count overflow</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:16.bhyve.asc">FreeBSD-SA-19:16.bhyve</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>&man.xhci.4; out-of-bounds
read</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:17.fd.asc">FreeBSD-SA-19:17.fd</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>Reference count leak</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:18.bzip2.asc">FreeBSD-SA-19:18.bzip2</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Multiple vulnerabilities</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:19.mldv2.asc">FreeBSD-SA-19:19.mldv2</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Out-of-bounds memory access</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:20.bsnmp.asc">FreeBSD-SA-19:20.bsnmp</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Insufficient message length
validation</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-SA-19:21.bhyve.asc">FreeBSD-SA-19:21.bhyve</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Insufficient validation of guest-supplied
data</para></entry>
</row>
</tbody>
</tgroup>
</informaltable>
</sect2>
<sect2 xml:id="errata">
<title>Errata Notices</title>
&errata;
<informaltable frame="none" pgwide="1">
<tgroup cols="3">
<colspec colwidth="40%"/>
<colspec colwidth="30%"/>
<colspec colwidth="30%"/>
<thead>
<row>
<entry>Errata</entry>
<entry>Date</entry>
<entry>Topic</entry>
</row>
</thead>
<tbody>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:01.cc_cubic.asc">FreeBSD-EN-19:01.cc_cubic</link></entry>
<entry>9&nbsp;January&nbsp;2019</entry>
<entry><para>Connection stalls with CUBIC congestion
control</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:02.tcp.asc">FreeBSD-EN-19:02.tcp</link></entry>
<entry>9&nbsp;January&nbsp;2019</entry>
<entry><para>TCP connections may stall and eventually
fail in case of packet loss</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:03.sqlite.asc">FreeBSD-EN-19:03.sqlite</link></entry>
<entry>9&nbsp;January&nbsp;2019</entry>
<entry><para>sqlite update</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:04.tzdata.asc">FreeBSD-EN-19:04.tzdata</link></entry>
<entry>9&nbsp;January&nbsp;2019</entry>
<entry><para>Timezone database information
update</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:06.dtrace.asc">FreeBSD-EN-19:06.dtrace</link></entry>
<entry>5&nbsp;February&nbsp;2019</entry>
<entry><para>DTrace incompatibility with SMAP-enabled
systems</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:07.lle.asc">FreeBSD-EN-19:07.lle</link></entry>
<entry>5&nbsp;February&nbsp;2019</entry>
<entry><para>LLE table lookup code race
condition</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:08.tzdata.asc">FreeBSD-EN-19:08.tzdata</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>Timezone database information
update</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:09.xinstall.asc">FreeBSD-EN-19:09.xinstall</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>&man.install.1; broken with partially
matching relative paths</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:10.scp.asc">FreeBSD-EN-19:10.scp</link></entry>
<entry>14&nbsp;May&nbsp;2019</entry>
<entry><para>Insufficient filename validation in
&man.scp.1; client</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:11.net.asc">FreeBSD-EN-19:11.net</link></entry>
<entry>19&nbsp;June&nbsp;2019</entry>
<entry><para>Incorrect locking in networking
stack</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:12.tzdata.asc">FreeBSD-EN-19:12.tzdata</link></entry>
<entry>2&nbsp;July&nbsp;2019</entry>
<entry><para>Timezone database information
update</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:13.mds.asc">FreeBSD-EN-19:13.mds</link></entry>
<entry>24&nbsp;July&nbsp;2019</entry>
<entry><para>System crash from Intel CPU vulnerability
mitigation</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:14.epoch.asc">FreeBSD-EN-19:14.epoch</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Incorrect locking</para></entry>
</row>
<row>
<entry><link
xlink:href="&security.url;/FreeBSD-EN-19:15.libunwind.asc">FreeBSD-EN-19:15.libunwind</link></entry>
<entry>6&nbsp;August&nbsp;2019</entry>
<entry><para>Incorrect exception handling</para></entry>
</row>
</tbody>
</tgroup>
</informaltable>
</sect2>
</sect1>