Index: stable/6/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
===================================================================
--- stable/6/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml	(revision 157147)
+++ stable/6/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml	(revision 157148)
@@ -1,280 +1,304 @@
 <articleinfo>
   <title>&os;/&arch; &release.current; Release Notes</title>
 
   <corpauthor>The &os; Project</corpauthor>
 
   <pubdate>$FreeBSD$</pubdate>
 
   <copyright>
     <year>2000</year>
     <year>2001</year>
     <year>2002</year>
     <year>2003</year>
     <year>2004</year>
     <year>2005</year>
     <year>2006</year>
     <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
   </copyright>
 
   <legalnotice id="trademarks" role="trademarks">
     &tm-attrib.freebsd;
     &tm-attrib.ibm;
     &tm-attrib.ieee;
     &tm-attrib.intel;
     &tm-attrib.sparc;
     &tm-attrib.general;
   </legalnotice>
 
   <abstract>
     <para>The release notes for &os; &release.current; contain a summary
       of the changes made to the &os; base system on the
       &release.branch; development line.
       This document lists applicable security advisories that were issued since
       the last release, as well as significant changes to the &os;
       kernel and userland.
       Some brief remarks on upgrading are also presented.</para>
   </abstract>
 </articleinfo>
 
 <sect1 id="intro">
   <title>Introduction</title>
 
   <para>This document contains the release notes for &os;
     &release.current; on the &arch.print; hardware platform.  It
     describes recently added, changed, or deleted features of &os;.
     It also provides some notes on upgrading
     from previous versions of &os;.</para>
 
 <![ %release.type.current [
 
   <para>The &release.type; distribution to which these release notes
     apply represents the latest point along the &release.branch; development
     branch since &release.branch; was created.  Information regarding pre-built, binary
     &release.type; distributions along this branch
     can be found at <ulink url="&release.url;"></ulink>.</para>
 
 ]]>
 
 <![ %release.type.snapshot [
 
   <para>The &release.type; distribution to which these release notes
     apply represents a point along the &release.branch; development
     branch between &release.prev; and the future &release.next;.
     Information regarding
     pre-built, binary &release.type; distributions along this branch
     can be found at <ulink url="&release.url;"></ulink>.</para>
 
 ]]>
 
 <![ %release.type.release [
 
   <para>This distribution of &os; &release.current; is a
     &release.type; distribution.  It can be found at <ulink
     url="&release.url;"></ulink> or any of its mirrors.  More
     information on obtaining this (or other) &release.type;
     distributions of &os; can be found in the <ulink
     url="&url.books.handbook;/mirrors.html"><quote>Obtaining
     &os;</quote> appendix</ulink> to the <ulink
     url="&url.books.handbook;/">&os;
     Handbook</ulink>.</para>
 
 ]]>
 
   <para>All users are encouraged to consult the release errata before
     installing &os;.  The errata document is updated with
     <quote>late-breaking</quote> information discovered late in the
     release cycle or after the release.  Typically, it contains
     information on known bugs, security advisories, and corrections to
     documentation.  An up-to-date copy of the errata for &os;
     &release.current; can be found on the &os; Web site.</para>
 
 </sect1>
 
 <sect1 id="new">
   <title>What's New</title>
 
   <para>This section describes
     the most user-visible new or changed features in &os;
     since &release.prev;.
     In general, changes described here are unique to the &release.branch;
     branch unless specifically marked as &merged; features.
   </para>
 
   <para>Typical release note items
     document recent security advisories issued after
     &release.prev;,
     new drivers or hardware support, new commands or options,
     major bug fixes, or contributed software upgrades.  They may also
     list changes to major ports/packages or release engineering
     practices.  Clearly the release notes cannot list every single
     change made to &os; between releases; this document focuses
     primarily on security advisories, user-visible changes, and major
     architectural improvements.</para>
 
   <sect2 id="security">
     <title>Security Advisories</title>
 
     <para>A temporary file vulnerability in &man.texindex.1;, which
       could allow a local attacker to overwrite files in the context
       of a user running the &man.texindex.1; utility, has been fixed.
       For more details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:01.texindex.asc">FreeBSD-SA-06:01.texindex</ulink>.</para>
 
     <para>A temporary file vulnerability in the &man.ee.1; text
       editor, which could allow a local attacker to overwrite files in
       the context of a user running &man.ee.1;, has been fixed.  For
       more details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:02.ee.asc">FreeBSD-SA-06:02.ee</ulink>.</para>
 
     <para>Several vulnerabilities in the &man.cpio.1; utility have
       been corrected.  For more
       details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:03.cpio.asc">FreeBSD-SA-06:03.cpio</ulink>.</para>
 
     <para>An error in &man.ipfw.4; IP fragment handling, which could
       cause a crash, has been fixed.  For more
       details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:04.ipfw.asc">FreeBSD-SA-06:04.ipfw</ulink>.</para>
 
     <para>A potential buffer overflow in the IEEE 802.11 scanning code
       has been corrected.  For more
       details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:05.80211.asc">FreeBSD-SA-06:05.80211</ulink>.</para>
 
     <para>Two instances in which portions of kernel memory could be
       disclosed to users have been fixed.  For more details see
       security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:06.kmem.asc">FreeBSD-SA-06:06.kmem</ulink>.</para>
 
     <para>A logic bug in the IP fragment handling in &man.pf.4;, which
       could cause a crash under certain circumstances, has been fixed.
       For more details see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:07.pf.asc">FreeBSD-SA-06:07.pf</ulink>.</para>
 
+    <para>A logic bug in the NFS server code, which could cause a crash when
+      the server received a message with a zero-length payload, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:10.nfs.asc">FreeBSD-SA-06:10.nfs</ulink>.</para>
+
+    <para>A programming error in the &man.fast.ipsec.4; implementation
+      results in the sequence number associated with a Security
+      Association not being updated, allowing packets to unconditionally
+      pass sequence number verification checks, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc">FreeBSD-SA-06:11.ipsec</ulink>.</para>
+
+    <para>A logic bug that could cause &man.opiepasswd.1; to allow an unprivileged
+      user to configure OPIE authentication for the root user under certain
+      circumstances, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:12.opie.asc">FreeBSD-SA-06:12.opie</ulink>.</para>
+
+    <para>An asynchronous signal handling vulnerability in &man.sendmail.8;,
+      which could allow a remote attacker to execute arbitrary code with the
+      privileges of the user running sendmail, typically root, has been fixed.
+      For more details see security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc">FreeBSD-SA-06:13.sendmail</ulink>.</para>
+
   </sect2>
 
   <sect2 id="kernel">
     <title>Kernel Changes</title>
 
     <para></para>
 
     <!-- Above this line, sort kernel changes by manpage/keyword-->
 
     <sect3 id="boot">
       <title>Boot Loader Changes</title>
 
       <para></para>
       <!-- Above this line, order boot loader changes by keyword-->
 
     </sect3>
 
     <sect3 id="proc">
       <title>Hardware Support</title>
 
       <para arch="i386,pc98">The &man.ce.4; driver has been added to
         support Cronyx Tau32-PCI adapters.
         </para>
 
       <para></para>
 
       <sect4 id="mm">
 	<title>Multimedia Support</title>
 
 	<para></para>
       </sect4>
 
       <sect4 id="net-if">
 	<title>Network Interface Support</title>
 
 	<para></para>
       </sect4>
     </sect3>
 
     <sect3 id="net-proto">
       <title>Network Protocols</title>
 
       <para></para>
     </sect3>
 
     <sect3 id="disks">
       <title>Disks and Storage</title>
 
       <para></para>
     </sect3>
 
     <sect3 id="fs">
       <title>File Systems</title>
 
       <para></para>
     </sect3>
 
     <sect3>
       <title>Contributed Software</title>
 
       <para><application>BIND</application> has been updated from 9.3.1
 	to 9.3.2.</para>
 
       <para>The timezone database has been updated from the
 	<application>tzdata2005l</application> release to the
 	<application>tzdata2005r</application> release.</para>
 
     </sect3>
   </sect2>
 
   <sect2 id="userland">
     <title>Userland Changes</title>
 
     <para></para>
   </sect2>
 
   <sect2 id="ports">
     <title>Ports/Packages Collection Infrastructure</title>
 
     <para></para>
   </sect2>
 
   <sect2 id="releng">
     <title>Release Engineering and Integration</title>
 
     <para>The supported version of
       the <application>GNOME</application> desktop environment
       (<filename role="package">x11/gnome2</filename>) has been
       updated from 2.10.2 to 2.12.3.</para>
 
     <para>The supported version of
       the <application>KDE</application> desktop environment
       (<filename role="package">x11/kde2</filename>) has been
       updated from 3.4.2 to 3.5.1.</para>
 
     <para>The supported version of
       the <application>Perl</application> interpreter
       (<filename role="package">lang/perl5.8</filename>) has been updated
       from 5.8.7 to 5.8.8.</para>
 
     <para>The supported version of
       the <application>&xorg;</application> windowing system
       (<filename role="package">x11/xorg</filename>) has been updated
       from 6.8.2 to 6.9.0.</para>
   </sect2>
 
   <sect2 id="doc">
     <title>Documentation</title>
 
     <para></para>
   </sect2>
 </sect1>
 
 <sect1 id="upgrade">
   <title>Upgrading from previous releases of &os;</title>
 
   <para>Source upgrades to &os; &release.current; are only supported
     from &os; 5.3-RELEASE or later.  Users of older systems wanting to
     upgrade &release.current; will need to update to &os; 5.3 or newer
     first, then to &os; &release.current;.</para>
 
   <important>
     <para>Upgrading &os; should, of course, only be attempted after
       backing up <emphasis>all</emphasis> data and configuration
       files.</para>
   </important>
 </sect1>