diff options
| author | Bruce A. Mah <bmah@FreeBSD.org> | 2002-03-09 01:12:03 +0000 |
|---|---|---|
| committer | Bruce A. Mah <bmah@FreeBSD.org> | 2002-03-09 01:12:03 +0000 |
| commit | 00148928a5a7e2cbcfc2434ce5780839f3c44332 (patch) | |
| tree | 3e8462129b0b4476e03a908841352faee33491c6 | |
| parent | c3a919a1282125a95f64ee7ca4e7e5569e140b12 (diff) | |
| download | src-00148928a5a7e2cbcfc2434ce5780839f3c44332.tar.gz src-00148928a5a7e2cbcfc2434ce5780839f3c44332.zip | |
Fix SA-02:13 release note item (missing text).
Reviewed by: nectar
Notes
Notes:
svn path=/head/; revision=91920
| -rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/article.sgml | 4 | ||||
| -rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 4 |
2 files changed, 6 insertions, 2 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index f9405f24afdc..f4eafd5ef2cd 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -1616,7 +1616,9 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting> <para>An <quote>off-by-one</quote> bug has been fixed in <application>OpenSSH</application>'s multiplexing code. This bug - could have allowed a connecting SSH client to execute arbitrary + could have allowed an authenticated remote user to cause + &man.sshd.8; to execute arbitrary code with superuser + privileges, or allowed a connecting SSH client to execute arbitrary code with the privileges of the client user. (See security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.asc">FreeBSD-SA-02:13</ulink>.) diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index f9405f24afdc..f4eafd5ef2cd 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -1616,7 +1616,9 @@ options HZ=1000 # not compulsory but strongly recommended</programlisting> <para>An <quote>off-by-one</quote> bug has been fixed in <application>OpenSSH</application>'s multiplexing code. This bug - could have allowed a connecting SSH client to execute arbitrary + could have allowed an authenticated remote user to cause + &man.sshd.8; to execute arbitrary code with superuser + privileges, or allowed a connecting SSH client to execute arbitrary code with the privileges of the client user. (See security advisory <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:13.openssh.asc">FreeBSD-SA-02:13</ulink>.) |