svn commit: r42183 - head/en_US.ISO8859-1/htdocs/news/status
Benjamin Kaduk
kaduk at MIT.EDU
Mon Jul 8 01:51:27 UTC 2013
On Sun, 7 Jul 2013, Gabor Pali wrote:
> Author: pgj
> Date: Sun Jul 7 05:33:33 2013
> New Revision: 42183
> URL: http://svnweb.freebsd.org/changeset/doc/42183
>
> Log:
> - Add a Q2 entry for secteam
>
> Submitted by: gnn
>
> Modified: head/en_US.ISO8859-1/htdocs/news/status/report-2013-04-2013-06.xml
> ==============================================================================
> --- head/en_US.ISO8859-1/htdocs/news/status/report-2013-04-2013-06.xml Sat Jul 6 23:15:13 2013 (r42182)
> +++ head/en_US.ISO8859-1/htdocs/news/status/report-2013-04-2013-06.xml Sun Jul 7 05:33:33 2013 (r42183)
> @@ -1037,4 +1037,51 @@
> <task>Fix <tt>x11-themes/gtk-xfce-engine</tt> with Gtk+ >=3.6.</task>
> </help>
> </project>
> +
> + <project cat='team'>
> + <title>&os; Security Team</title>
> +
> + <contact>
> + <person>
> + <name>
> + <given>&os; Security Team</given>
> + </name>
> + <email>secteam at FreeBSD.org</email>
> + </person>
> + </contact>
> +
> + <links/>
> +
> + <body>
> + <p>On April 15th Dag-Erling Smørgrav and Xin Li took over
> + as security officers for the &os; Project, and the team welcomed
> + Qing Li back in the team in June. This report briefly
"back to the team" is probably better.
> + summarizes the work of the Security Team from April until the
> + end of June.</p>
> +
> + <p>The Security Team has released the following advisories:</p>
> +
> + <ul>
> + <li><tt>FreeBSD-SA-13:05.nfsserver</tt>: Insufficient input
> + validation in the NFS server (<tt>nfsd(8)</tt>), reported by
> + Adam Nowacki.</li>
> +
> + <li><tt>FreeBSD-SA-13:06.mmap</tt>: Privilege escalation via
> + <tt>mmap()</tt>, reported by Konstantin Belousov.</li>
> +
> + <li><tt>FreeBSD-EN-13:02.vtnet</tt>: <tt>vtnet(4)</tt>
> + network interface issue on QEMU 1.4.0 and later in 8.4-RELEASE,
> + reported by Julian Stecklina.</li>
> +
> + <li><tt>FreeBSD-EN-13:01.fxp</tt>: <tt>dhclient(8)</tt> utility
> + issue on <tt>fxp(4)</tt> network interface in 8.4-RELEASE,
> + reported by Michael L. Squires.</li>
> + </ul>
"vtnet network interface issue" and "dhclient utility issue" are rather
odd phrasings that convey little information about the actual issue. I
don't remember the actual problems offhand, but I expect that a rewording
is possible which better indicates the nature of the problem.
> + <p>Per request of Baptiste Daroussin, the Security Team has also
"Per the request"?
-Ben
> + reviewed the source code of Poudriere, the port build and test
> + system which is planned to be used for producing <tt>pkg(8)</tt>
> + ("new-style") packages on the &os; cluster.</p>
> + </body>
> + </project>
> </report>
>
More information about the svn-doc-all
mailing list