diff --git a/website/content/en/releases/13.1R/errata.adoc b/website/content/en/releases/13.1R/errata.adoc index c5ebada115..b153493574 100644 --- a/website/content/en/releases/13.1R/errata.adoc +++ b/website/content/en/releases/13.1R/errata.adoc @@ -1,84 +1,97 @@ --- title: "FreeBSD 13.1-RELEASE Errata" sidenav: download --- :release: 13.1-RELEASE :releaseNext: 13.2-RELEASE :releaseBranch: 13-STABLE = FreeBSD {release} Errata == Abstract This document lists errata items for FreeBSD {release}, containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of FreeBSD. This errata document for FreeBSD {release} will be maintained until the release of FreeBSD {releaseNext}. == Table of Contents * <> * <> * <> * <> * <> [[intro]] == Introduction This errata document contains "late-breaking news" about FreeBSD {release}. Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed. Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the "current errata" for this release. These other copies of the errata are located at https://www.FreeBSD.org/releases/, plus any sites which keep up-to-date mirrors of this location. Source and binary snapshots of FreeBSD {releaseBranch} also contain up-to-date copies of this document (as of the time of the snapshot). For a list of all FreeBSD CERT security advisories, see https://www.FreeBSD.org/security/. [[security]] == Security Advisories [width="100%",cols="40%,30%,30%",options="header",] |=== |Advisory |Date |Topic |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:09.elf.asc[FreeBSD-SA-22:09.elf] |9 August 2022 |Out of bound read in elf_note_prpsinfo() |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:11.vm.asc[FreeBSD-SA-22:11.vm] |9 August 2022 |Memory disclosure by stale virtual memory mapping |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:12.lib9p.asc[FreeBSD-SA-22:12.lib9p] |9 August 2022 |Missing bounds check in 9p message handling |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:13.zlib.asc[FreeBSD-SA-22:13.zlib] |30 August 2022 |zlib heap buffer overflow |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:14.heimdal.asc[FreeBSD-SA-22:14.heimdal] |29 November 2022 (revised)|Multiple vulnerabilities in Heimdal |link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-22:15.ping.asc[FreeBSD-SA-22:15.ping] |29 November 2022 |Stack overflow in ping(8) +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:01.geli.asc[FreeBSD-SA-23:01.geli] |8 February 2023 |GELI silently omits the keyfile if read from stdin +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:03.openssl.asc[FreeBSD-SA-23:03.openssl] |16 February 2023 |Multiple vulnerabilities in OpenSSL +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:04.pam_krb5.asc[FreeBSD-SA-23:04.pam_krb5] |21 June 2023 |Network authentication attack via pam_krb5 +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:06.ipv6.asc[FreeBSD-SA-23:06.ipv6] |1 August 2023 |Remote denial of service in IPv6 fragment reassembly +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:07.bhyve.asc[FreeBSD-SA-23:07.bhyve] |1 August 2023 |bhyve privileged guest escape via fwctl +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:08.ssh.asc[FreeBSD-SA-23:08.ssh] |1 August 2023 |Potential remote code execution via ssh-agent forwarding +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-SA-23:09.pam_krb5.asc[FreeBSD-SA-23:09.pam_krb5] |1 August 2023 |Network authentication attack via pam_krb5 |=== [[errata]] == Errata Notices [width="100%",cols="40%,30%,30%",options="header",] |=== |Errata |Date |Topic |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:16.kqueue.asc[FreeBSD-EN-22:16.kqueue] |9 August 2022 |kevent(2) timers fire too often |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:17.cam.asc[FreeBSD-EN-22:17.cam] |9 August 2022 |Kernel memory corruption during SCSI error recovery |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:19.pam_exec.asc[FreeBSD-EN-22:19.pam_exec] |9 August 2022 |NULL pointer dereference in pam_exec(8) |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:20.tzdata.asc[FreeBSD-EN-22:20.tzdata] |30 August 2022 |Timezone database information update |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:21.zfs.asc[FreeBSD-EN-22:21.zfs] |1 November 2022 |ZFS B-Tree use-after-free |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:22.tzdata.asc[FreeBSD-EN-22:22.tzdata] |1 November 2022 |Timezone database information update |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:23.vm.asc[FreeBSD-EN-22:23.vm] |1 November 2022 |Memory pages become unreclaimable |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:24.zfs.asc[FreeBSD-EN-22:24.zfs] |1 November 2022 |ZFS snapshot directories not accessible over NFS |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:25.tcp.asc[FreeBSD-EN-22:25.tcp] |1 November 2022 |Possible data corruption with TCP SACK retransmissions |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:26.cam.asc[FreeBSD-EN-22:26.cam] |1 November 2022 |CAM ioctl(2) compatibility breakage |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:27.loader.asc[FreeBSD-EN-22:27.loader] |1 November 2022 |UEFI loader failing to boot older amd64 kernels |link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-22:28.heimdal.asc[FreeBSD-EN-22:28.heimdal] |29 November 2022 |Regression in Heimdal KDC - +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:01.tzdata.asc[FreeBSD-EN-23:01.tzdata] |8 February 2023 |Timezone database information update +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:02.sdhci.asc[FreeBSD-EN-23:02.sdhci] |8 February 2023 |sdhci(4) broken write-protect settings +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:03.ena.asc[FreeBSD-EN-23:03.ena] |8 February 2023 |ena driver crash after reset in 7th gen AWS instance types +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:04.ixgbe.asc[FreeBSD-EN-23:04.ixgbe] |8 February 2023 |ixgbe incorrectly reports input errors for 82599ES +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:05.tzdata.asc[FreeBSD-EN-23:05.tzdata] |21 June 2023 |Timezone database information update +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:06.loader.asc[FreeBSD-EN-23:06.loader] |21 June 2023 |x86 kernel console configuration +|link:https://www.FreeBSD.org/security/advisories/FreeBSD-EN-23:07.mpr.asc[FreeBSD-EN-23:07.mpr] |21 June 2023 |mpr(4) may fail to initialize devices |=== [[open-issues]] == Open Issues No open issues. [[late-news]] == Late-Breaking News [2022-07-12] A late issue was discovered with RISCV virtual machine images, wherein the images produced would result in a zero-byte file. As such, the images have been removed.