Index: head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/errata.xml
===================================================================
--- head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/errata.xml (revision 53312)
+++ head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/errata.xml (revision 53313)
@@ -1,131 +1,145 @@
ErrataDateTopicFreeBSD-EN-19:01.cc_cubic9 January 2019Connection stalls with CUBIC congestion
controlFreeBSD-EN-19:02.tcp9 January 2019TCP connections may stall and eventually fail in
case of packet lossFreeBSD-EN-19:03.sqlite9 January 2019sqlite updateFreeBSD-EN-19:04.tzdata9 January 2019Timezone database information
updateFreeBSD-EN-19:06.dtrace5 February 2019DTrace incompatibility with SMAP-enabled
systemsFreeBSD-EN-19:07.lle5 February 2019LLE table lookup code race
conditionFreeBSD-EN-19:08.tzdata14 May 2019Timezone database information
updateFreeBSD-EN-19:09.xinstall14 May 2019&man.install.1; broken with partially matching
relative pathsFreeBSD-EN-19:10.scp14 May 2019Insufficient filename validation in &man.scp.1;
clientFreeBSD-EN-19:11.net19 June 2019Incorrect locking in networking
stackFreeBSD-EN-19:12.tzdata2 July 2019Timezone database information
updateFreeBSD-EN-19:13.mds24 July 2019System crash from Intel CPU vulnerability
mitigationFreeBSD-EN-19:14.epoch6 August 2019Incorrect lockingFreeBSD-EN-19:15.libunwind6 August 2019Incorrect exception handling
+
+
+ FreeBSD-EN-19:16.bhyve
+ 20 August 2019
+ Instruction emulation improvements
+
+
+
+ FreeBSD-EN-19:17.ipfw
+ 20 August 2019
+ "jail" keyword fix
+
Index: head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/security.xml
===================================================================
--- head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/security.xml (revision 53312)
+++ head/en_US.ISO8859-1/htdocs/releases/12.0R/share/xml/security.xml (revision 53313)
@@ -1,176 +1,197 @@
AdvisoryDateTopicFreeBSD-SA-18:15.bootpd19 December 2018Buffer overflowFreeBSD-SA-19:01.syscall5 February 2019Kernel data register leakFreeBSD-SA-19:02.fd5 February 2019File description reference count
leakFreeBSD-SA-19:03.wpa14 May 2019Multiple vulnerabilitiesFreeBSD-SA-19:04.ntp14 May 2019Authenticated denial of service in
&man.ntpd.8;FreeBSD-SA-19:05.pf14 May 2019IPv6 fragment reassembly panic in
&man.pf.4;FreeBSD-SA-19:06.pf14 May 2019ICMP/ICMP6 packet filter bypass in
&man.pf.4;FreeBSD-SA-19:07.mds14 May 2019Microarchitectural Data SamplingFreeBSD-SA-19:08.rack19 June 2019Resource exhaustion in non-default RACK TCP
stackFreeBSD-SA-19:09.iconv2 July 2019&man.iconv.3; buffer overflowFreeBSD-SA-19:10.ufs2 July 2019Kernel stack disclosureFreeBSD-SA-19:11.cd_ioctl2 July 2019Privilege escalation in &man.cd.4;FreeBSD-SA-19:12.telnet24 July 2019Multiple vulnerabilitiesFreeBSD-SA-19:13.pts24 July 2019Write-after-free vulnerabilityFreeBSD-SA-19:15.mqueuefs24 July 2019Reference count overflowFreeBSD-SA-19:16.bhyve24 July 2019&man.xhci.4; out-of-bounds readFreeBSD-SA-19:17.fd24 July 2019Reference count leakFreeBSD-SA-19:18.bzip26 August 2019Multiple vulnerabilitiesFreeBSD-SA-19:19.mldv26 August 2019Out-of-bounds memory accessFreeBSD-SA-19:20.bsnmp6 August 2019Insufficient message length
validationFreeBSD-SA-19:21.bhyve6 August 2019Insufficient validation of guest-supplied
data
+
+
+ FreeBSD-SA-19:22.mbuf
+ 20 August 2019
+ IPv6 remove denial-of-service
+
+
+
+ FreeBSD-SA-19:23.midi
+ 20 August 2019
+ Kernel memory disclosure
+
+
+
+ FreeBSD-SA-19:24.mqueuefs
+ 20 August 2019
+ Reference count overflow
+
Index: head/en_US.ISO8859-1/htdocs/releases/12.1R/relnotes/relnotes.xml
===================================================================
--- head/en_US.ISO8859-1/htdocs/releases/12.1R/relnotes/relnotes.xml (revision 53312)
+++ head/en_US.ISO8859-1/htdocs/releases/12.1R/relnotes/relnotes.xml (revision 53313)
@@ -1,793 +1,828 @@
%release;
%sponsor;
%vendor;
]>
&os; &release.current; Release NotesThe &os; Project$FreeBSD$2019The &os; Documentation
Project
&tm-attrib.freebsd;
&tm-attrib.ibm;
&tm-attrib.ieee;
&tm-attrib.intel;
&tm-attrib.sparc;
&tm-attrib.general;
The release notes for &os; &release.current; contain
a summary of the changes made to the &os; base system on the
&release.branch; development line. This document lists
applicable security advisories that were issued since the last
release, as well as significant changes to the &os; kernel and
userland. Some brief remarks on upgrading are also
presented.IntroductionThis document contains the release notes for &os;
&release.current;. It describes recently added, changed, or
deleted features of &os;. It also provides some notes on
upgrading from previous versions of &os;.The &release.type; distribution to
which these release notes apply represents the latest point
along the &release.branch; development branch since
&release.branch; was created. Information regarding pre-built,
binary &release.type; distributions along this branch can be
found at &release.url;.The &release.type; distribution to
which these release notes apply represents a point along the
&release.branch; development branch between &release.prev; and
the future &release.next;. Information regarding pre-built,
binary &release.type; distributions along this branch can be
found at &release.url;.This distribution of &os;
&release.current; is a &release.type; distribution. It can be
found at &release.url; or
any of its mirrors. More information on obtaining this (or
other) &release.type; distributions of &os; can be found in the
Obtaining
&os; appendix to the &os;
Handbook.All users are encouraged to consult the release errata
before installing &os;. The errata document is updated with
late-breaking information discovered late in the
release cycle or after the release. Typically, it contains
information on known bugs, security advisories, and corrections
to documentation. An up-to-date copy of the errata for &os;
&release.current; can be found on the &os; Web site.This document describes the most user-visible new or changed
features in &os; since &release.prev;. In general, changes
described here are unique to the &release.branch; branch unless
specifically marked as &merged; features.Typical release note items document recent security
advisories issued after &release.prev;, new drivers or hardware
support, new commands or options, major bug fixes, or
contributed software upgrades. They may also list changes to
major ports/packages or release engineering practices. Clearly
the release notes cannot list every single change made to &os;
between releases; this document focuses primarily on security
advisories, user-visible changes, and major architectural
improvements.Upgrading from Previous Releases of &os;Binary upgrades between RELEASE versions
(and snapshots of the various security branches) are supported
using the &man.freebsd-update.8; utility. The binary upgrade
procedure will update unmodified userland utilities, as well as
unmodified GENERIC kernels distributed as a part of an official
&os; release. The &man.freebsd-update.8; utility requires that
the host being upgraded have Internet connectivity.Source-based upgrades (those based on recompiling the &os;
base system from source code) from previous versions are
supported, according to the instructions in
/usr/src/UPDATING.Upgrading &os; should only be attempted after backing up
all data and configuration files.Security and ErrataThis section lists the various Security Advisories and
Errata Notices since &release.prev;.Security AdvisoriesAdvisoryDateTopicFreeBSD-SA-18:15.bootpd19 December 2018Buffer overflowFreeBSD-SA-19:01.syscall5 February 2019Kernel data register leakFreeBSD-SA-19:02.fd5 February 2019File description reference count
leakFreeBSD-SA-19:03.wpa14 May 2019Multiple vulnerabilitiesFreeBSD-SA-19:04.ntp14 May 2019Authenticated denial of service in
&man.ntpd.8;FreeBSD-SA-19:05.pf14 May 2019IPv6 fragment reassembly panic in
&man.pf.4;FreeBSD-SA-19:06.pf14 May 2019ICMP/ICMP6 packet filter bypass in
&man.pf.4;FreeBSD-SA-19:07.mds14 May 2019Microarchitectural Data
SamplingFreeBSD-SA-19:08.rack19 June 2019Resource exhaustion in non-default RACK TCP
stackFreeBSD-SA-19:09.iconv2 July 2019&man.iconv.3; buffer
overflowFreeBSD-SA-19:10.ufs2 July 2019Kernel stack disclosureFreeBSD-SA-19:11.cd_ioctl2 July 2019Privilege escalation in
&man.cd.4;FreeBSD-SA-19:12.telnet24 July 2019Multiple vulnerabilitiesFreeBSD-SA-19:13.pts24 July 2019Write-after-free
vulnerabilityFreeBSD-SA-19:15.mqueuefs24 July 2019Reference count overflowFreeBSD-SA-19:16.bhyve24 July 2019&man.xhci.4; out-of-bounds
readFreeBSD-SA-19:17.fd24 July 2019Reference count leakFreeBSD-SA-19:18.bzip26 August 2019Multiple vulnerabilitiesFreeBSD-SA-19:19.mldv26 August 2019Out-of-bounds memory accessFreeBSD-SA-19:20.bsnmp6 August 2019Insufficient message length
validationFreeBSD-SA-19:21.bhyve6 August 2019Insufficient validation of guest-supplied
data
+
+
+ FreeBSD-SA-19:22.mbuf
+ 20 August 2019
+ IPv6 remove denial-of-service
+
+
+
+ FreeBSD-SA-19:23.midi
+ 20 August 2019
+ Kernel memory disclosure
+
+
+
+ FreeBSD-SA-19:24.mqueuefs
+ 20 August 2019
+ Reference count overflow
+ Errata NoticesErrataDateTopicFreeBSD-EN-19:01.cc_cubic9 January 2019Connection stalls with CUBIC congestion
controlFreeBSD-EN-19:02.tcp9 January 2019TCP connections may stall and eventually
fail in case of packet lossFreeBSD-EN-19:03.sqlite9 January 2019sqlite updateFreeBSD-EN-19:04.tzdata9 January 2019Timezone database information
updateFreeBSD-EN-19:06.dtrace5 February 2019DTrace incompatibility with SMAP-enabled
systemsFreeBSD-EN-19:07.lle5 February 2019LLE table lookup code race
conditionFreeBSD-EN-19:08.tzdata14 May 2019Timezone database information
updateFreeBSD-EN-19:09.xinstall14 May 2019&man.install.1; broken with partially
matching relative pathsFreeBSD-EN-19:10.scp14 May 2019Insufficient filename validation in
&man.scp.1; clientFreeBSD-EN-19:11.net19 June 2019Incorrect locking in networking
stackFreeBSD-EN-19:12.tzdata2 July 2019Timezone database information
updateFreeBSD-EN-19:13.mds24 July 2019System crash from Intel CPU vulnerability
mitigationFreeBSD-EN-19:14.epoch6 August 2019Incorrect lockingFreeBSD-EN-19:15.libunwind6 August 2019Incorrect exception handling
+
+
+
+ FreeBSD-EN-19:16.bhyve
+ 20 August 2019
+ Instruction emulation improvements
+
+
+
+ FreeBSD-EN-19:17.ipfw
+ 20 August 2019
+ "jail" keyword fixUserlandThis section covers changes and additions to userland
applications, contributed software, and system utilities.Userland Configuration ChangesUserland Application ChangesThe &man.lockf.1; utility has been
updated to return EX_UNAVAILABLE if the
-n flag is used and the lock file does not
exist.The &man.ktrdump.8; utility has been
updated to include the -l flag which
enables "live" mode when specified.The &man.gzip.1; utility has been
updated to add -l support for &man.xz.1;
files.The &man.trim.8; utility has been added,
which deletes content for blocks on flash-based storage
devices that use wear-leveling algorithms.The &man.sh.1; utility has been updated
to include a new pipefail option, which
when set, changes the exit status of a pipeline to the last
non-zero exit status of any command in the pipeline.The &man.mlx5tool.8; utility has been
updated to implement firmware update capability for
ConnectX-4®, ConnectX-5®, and ConnectX-6®.The &man.posixshmcontrol.1; utility has
been added.The &man.swapon.8; utility has been
updated to invoke BIO_DELETE to trim
swap devices if either the -E flag is used
on the command line, or if the trimonce
option is included in &man.fstab.5;.Contributed SoftwareBearSSL has
been imported to the base system.The &man.ntpd.8; suite of utilities have
been updated to version 4.2.8p13.The WPA utilities
have been updated to version 2.7.The &man.tcpdump.1; utility has been
updated to disable &man.capsicum.4; support when the
-E flag is used.The &man.bsnmpd.1; utility has been
updated to includeIPv6 transport
support.OpenSSL has
been updated to version 1.1.1c.The &man.mandoc.1; utility has been
updated to version 1.14.5.The &man.libarchive.3; library has
been updated to version 3.4.0.The timezone database files have been
updated to version 2019b.The &man.bzip2.1; utility has been
updated to version 1.0.7.The clang,
llvm,
lld,
lldb,
compiler-rt utilities and
libc++ have been updated to version
8.0.1.The
lld linker has been enabled by
default for &arch.i386;.The
bzip2recover utility has been
added.Deprecated ApplicationsThe &man.ctm.1; utility has been marked
as deprecated, and has been removed in &os; 13.0.The &man.timed.8; utility has been
marked as deprecated, and has been removed in
&os; 13.0.Installation and Configuration Tools/etc/rc.d
ScriptsRuntime Libraries and APIThe libomp library
has been added.ABI CompatibilityKernelThis section covers changes to kernel configurations, system
tuning, and system control parameters that are not otherwise
categorized.General Kernel ChangesThe pci_vendors
list has been updated to version 2019.01.29.Kernel Bug FixesKernel ConfigurationDevices and DriversThis section covers changes and additions to devices and
device drivers since &release.prev;.Device DriversNetwork DriversDeprecated DriversHardware SupportThis section covers general hardware support for physical
machines, hypervisors, and virtualization environments, as well
as hardware changes and updates that do not otherwise fit in
other sections of this document.Hardware SupportGraphics SupportVirtualization SupportARM SupportStorageThis section covers changes and additions to file systems
and other storage subsystems, both local and networked.General StorageThe &man.camcontrol.8; utility has been
updated to add ATA power mode
support.Networked StorageZFSBoot Loader ChangesThis section covers the boot loader, boot menu, and other
boot-related changes.Boot Loader ChangesNetworkingThis section describes changes that affect networking in
&os;.General NetworkThe &man.ipfw.8; utility has been
updated to fix showing headers outside of "all"
when executing ipfw table list.Support for NAT64
CLAT has been added, as defined in
RFC6877.The
net.inet.tcp.rexmit_initial &man.sysctl.8;
has been added, used for setting
RTO.Initial, used by
TCP.Support for
GRE-in-UDP encapsulation
has been added, as defined in
RFC8086.Network ProtocolsPorts Collection and Package InfrastructureThis section covers changes to the &os; Ports
Collection, package infrastructure, and package maintenance and
installation tools.Packaging ChangesDocumentationThis section covers changes to the &os; Documentation
Project sources and toolchain.Documentation Source ChangesRelease Engineering and IntegrationThis section convers changes that are specific to the
&os; Release Engineering processes.Integration Changes