diff options
author | Bruce A. Mah <bmah@FreeBSD.org> | 2003-02-24 17:50:27 +0000 |
---|---|---|
committer | Bruce A. Mah <bmah@FreeBSD.org> | 2003-02-24 17:50:27 +0000 |
commit | e3b5cb1fc713df67c9af8f11271776bce260a293 (patch) | |
tree | 984451dffef4282aad8eb5f74c250840a399e100 /release | |
parent | 3fa24ec9f12b190d3cc7b18e93e7304fde2ffe37 (diff) | |
download | src-e3b5cb1fc713df67c9af8f11271776bce260a293.tar.gz src-e3b5cb1fc713df67c9af8f11271776bce260a293.zip |
New errata: SA-03:02, SA-03:03.
Notes
Notes:
svn path=/head/; revision=111435
Diffstat (limited to 'release')
-rw-r--r-- | release/doc/en_US.ISO8859-1/errata/article.sgml | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/errata/article.sgml b/release/doc/en_US.ISO8859-1/errata/article.sgml index 9575bb57f452..a97d7a47437e 100644 --- a/release/doc/en_US.ISO8859-1/errata/article.sgml +++ b/release/doc/en_US.ISO8859-1/errata/article.sgml @@ -115,6 +115,24 @@ found in security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:01.cvs.asc">FreeBSD-SA-03:01</ulink>.</para> + <para>A timing-based attack on <application>OpenSSL</application>, + could allow a very powerful attacker access to plaintext + under certain circumstances. This problem has been corrected in + &os; &release.current; with an upgrade + to <application>OpenSSL</application> 0.9.7. On supported + security fix branches, this problem has been corrected with the + import of <application>OpenSSL</application> 0.9.6i. See security + advisory <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:02.openssl.asc">FreeBSD-SA-03:02</ulink> + for more details.</para> + + <para>It may be possible to recover the shared secret key used by + the implementation of the <quote>syncookies</quote> feature. + This reduces its effectiveness in dealing with TCP SYN flood + denial-of-service attacks. Workaround information and fixes are + given in security advisory <ulink + url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:03.syncookies.asc">FreeBSD-SA-03:03</ulink>.</para> + </sect1> <sect1 id="late-news"> |