New release note: FreeBSD-SA-01:42.

2001-07-11 01:10:45 +00:00 · 2001-07-11 01:10:45 +00:00 · 3cf5e6ff05
commit 3cf5e6ff05
parent 962315f66f
2 changed files with 10 additions and 0 deletions
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@ -884,6 +884,11 @@
    user's UID before attempting to unlink the authentication
    forwarding file, nullifying the effects of a race.</para>

+    <para>A flaw allowed some signal handlers to remain in effect in a
+    child process after being exec-ed from its parent.  This allowed
+    an attacker to execute arbitrary code in the context of a setuid
+    binary.  This flaw has been corrected (see security advisory
+    FreeBSD-SA-01:42). &merged;</para>
  </sect2>
  <sect2>
    <title>Userland Changes</title>
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@ -884,6 +884,11 @@
    user's UID before attempting to unlink the authentication
    forwarding file, nullifying the effects of a race.</para>

+    <para>A flaw allowed some signal handlers to remain in effect in a
+    child process after being exec-ed from its parent.  This allowed
+    an attacker to execute arbitrary code in the context of a setuid
+    binary.  This flaw has been corrected (see security advisory
+    FreeBSD-SA-01:42). &merged;</para>
  </sect2>
  <sect2>
    <title>Userland Changes</title>