--- title: "FreeBSD 9.1-RELEASE Errata" sidenav: download --- = FreeBSD 9.1-RELEASE Errata ''''' This document lists errata items for FreeBSD 9.1-RELEASE, containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of FreeBSD. This errata document for FreeBSD 9.1-RELEASE will be maintained until the release of FreeBSD 9.2-RELEASE. ''''' [[intro]] == Introduction This errata document contains “late-breaking news” about FreeBSD 9.1-RELEASE. Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed. Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the “current errata” for this release. These other copies of the errata are located at http://www.FreeBSD.org/releases/, plus any sites which keep up-to-date mirrors of this location. Source and binary snapshots of FreeBSD 9.1-STABLE also contain up-to-date copies of this document (as of the time of the snapshot). For a list of all FreeBSD CERT security advisories, see http://www.FreeBSD.org/security/ or ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/. ''''' [[security]] == Security Advisories Problems described in the following security advisories have been fixed in 9.1-RELEASE. For more information, consult the individual advisories available from http://security.FreeBSD.org/. [width="100%",cols="20%,20%,60%",options="header",] |=== |Advisory |Date |Topic |http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc[SA-12:01.openssl] |3 May 2012 |OpenSSL multiple vulnerabilities |http://security.freebsd.org/advisories/FreeBSD-SA-12:02.crypt.asc[SA-12:02.crypt] |30 May 2012 |Incorrect `crypt()` hashing |http://security.freebsd.org/advisories/FreeBSD-SA-12:03.bind.asc[SA-12:03.bind] |12 June 2012 |Incorrect handling of zero-length RDATA fields in man:named[8] |http://security.freebsd.org/advisories/FreeBSD-SA-12:04.sysret.asc[SA-12:04.sysret] |12 June 2012 |Privilege escalation when returning from kernel |http://security.freebsd.org/advisories/FreeBSD-SA-12:05.bind.asc[SA-12:05.bind] |6 August 2012 |man:named[8] DNSSEC validation Denial of Service |http://security.freebsd.org/advisories/FreeBSD-SA-12:06.bind.asc[SA-12:06.bind] |22 November 2012 |Multiple Denial of Service vulnerabilities with man:named[8] |http://security.freebsd.org/advisories/FreeBSD-SA-12:07.hostapd.asc[SA-12:07.hostapd] |22 November 2012 |Insufficient message length validation for EAP-TLS messages |http://security.freebsd.org/advisories/FreeBSD-SA-12:08.linux.asc[SA-12:08.linux] |22 November 2012 |Linux compatibility layer input validation error |=== ''''' [[late-news]] == Late-Breaking News [November 2, 2012] The current man:mfi[4] driver has an overflow bug when handling disks larger than 2^32 sectors in SYSPD volumes, also known as JBODs, which will cause data corruption. This bug has been fixed on this FreeBSD-CURRENT but was too late for inclusion in this release. An Errata Notice for 9.1-RELEASE is planned. [December 25, 2012] The Installtion Instructions had the following wrong information about upgrading procedure. All of them have been fixed in the online version. * The link URL of “upgrading section in the Release Notes”, branch names where upcoming Security Advisories or Errata Notices will be applied, and a command line argument of man:freebsd-update[8] were ones for 9.0-RELEASE, not for 9.1-RELEASE. * The list of releases supported by man:freebsd-update[8] utility were incorrect. For 9.X, The following versions are supported: `9.0-RELEASE`, `9.1-BETA1`, and `9.1-RC[123]`.