The &os; Project $FreeBSD: src/release/doc/en_US.ISO8859-1/errata/article.sgml,v 1.1.2.105 2003/05/01 15:09:53 trhodes Exp $ $DragonFly: src/release/doc/en_US.ISO8859-1/errata/Attic/article.sgml,v 1.2 2003/06/17 04:27:19 dillon Exp $ 2000 2001 2002 2003 The FreeBSD Documentation Project This document lists errata items for &os; containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of &os;. This errata document for &os; will be maintained until the release of &os; &release.next;. This errata document contains late-breaking news about &os; Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed. Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the current errata for this release. These other copies of the errata are located at , plus any sites which keep up-to-date mirrors of this location. Source and binary snapshots of &os; &release.branch; also contain up-to-date copies of this document (as of the time of the snapshot). For a list of all &os; CERT security advisories, see or . No active security advisories. ]]> A buffer overflow in header parsing exists in older versions of sendmail. It could allow a remote attacker to create a specially-crafted message that may cause &man.sendmail.8; to execute arbitrary code with the privileges of the user running it, typically root. More information, including pointers to patches, can be found in security advisory FreeBSD-SA-03:07. This problem was corrected for &os; &release.prev; with a vendor patch and was corrected for &os; &release.current; with the import of a new version of sendmail. However, these changes may not otherwise have been noted in the release documentation. ]]> No news. ]]> Due to some problems discovered very late in the release cycle, the ISO images and FTP install directories for &os; &release.prev;/i386 needed to be re-generated and re-uploaded to the FTP mirror sites. For reference, the final ISO images have checksums computed via &man.md5.1; as follows: MD5 (4.8-RELEASE-i386-disc1.iso) = c4e34b6a6be5cd1977ca206bf821c7fc MD5 (4.8-RELEASE-i386-disc2.iso) = 93b09f97c01deead302557d7d24f87cb MD5 (4.8-RELEASE-i386-mini.iso) = 5f0d2576dbb56d6ec85d49ac9fa4bbf9 Some parts of the documentation may incorrectly give the release date of &os; &release.prev; as March 2003, rather than April 2003. &os; &release.prev; restores the ability to install from the installation media to a &man.mly.4; device. (This capability was broken in &os; 4.7-RELEASE.) After installing GNOME, the default terminal font might be garbled. If this is the case, install the x11-fonts/bitstream-vera port, then restart GNOME. The new fonts should take effect automatically. If they do not, edit the current gnome-terminal profile and select the Bitstream Vera Sans Mono font. Due to space limitations, the &man.awi.4; driver has been removed from the kernel used on the 1.44MB kern.flp i386 boot floppy. Because no module is available for this driver in &os; &release.prev;, this means that it is generally not possible to install &os; &release.prev; over an &man.awi.4; network. Due to space limitations, support for ATAPI floppy disks and the DEC AlphaServer 8200 and 8400 (TurboLaser) machines has been removed from the kernel used on the 1.44MB kern.flp alpha boot floppy. A bug in the &os; &release.prev; kernel prevents it from booting on an Intel 80386 processor. This problem has been corrected on both the &release.prev; security fix branch and the &release.branch; development branch. &os; supports a hashed form of the login capabilities database, stored in /etc/login.conf.db. This is generated from the /etc/login.conf text file. If the hashed database is present, &man.login.1; will use it in preference to the contents of the text file. &os; &release.prev; is the first release that actually includes /etc/login.conf.db on the distribution media; thus, users modifying /etc/login.conf need to remember to regenerate the database, using &man.cap.mkdb.1;. Users performing source upgrades are generally not affected by this change, because &man.mergemaster.8; offers the option to regenerate /etc/login.conf.db during upgrades. &man.login.conf.5; has more details on the format and usage of the login capabilities database. A file that is a part of the multimedia/gstreamer-plugins port may appear to have a corrupted filename when the ports collection is installed using &man.sysinstall.8;. This should not affect building the port or installing the corresponding package. However, it is recommended to rename the file in question, to prevent problems during any future updates to the installed ports collection: &prompt.root; cd /usr/ports/multimedia/gstreamer-plugins/files &prompt.root; mv patch-gst-libs_ext_ffmpeg_ffmpeg_libavcodec_alpha_simple_i \ patch-gst-libs_ext_ffmpeg_ffmpeg_libavcodec_alpha_simple_idct_alpha.c Recently the mailing lists were changed from majordomo to the currently used Mailman list server. More information about using the new mailing lists can be found by visiting the FreeBSD Mailman Info Page. ]]>