FreeBSD The Power to Serve

FreeBSD 13.2-RELEASE Errata

Abstract

This document lists errata items for FreeBSD 13.2-RELEASE, containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of FreeBSD.

This errata document for FreeBSD 13.2-RELEASE will be maintained until the release of FreeBSD 13.3-RELEASE.

Introduction

This errata document contains "late-breaking news" about FreeBSD 13.2-RELEASE. Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed.

Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the "current errata" for this release. These other copies of the errata are located at https://www.FreeBSD.org/releases/, plus any sites which keep up-to-date mirrors of this location.

Source and binary snapshots of FreeBSD 13-STABLE also contain up-to-date copies of this document (as of the time of the snapshot).

For a list of all FreeBSD CERT security advisories, see https://www.FreeBSD.org/security/.

Security Advisories

Advisory Date Topic

FreeBSD-SA-23:04.pam_krb5

21 June 2023

Network authentication attack via pam_krb5

FreeBSD-SA-23:06.ipv6

1 August 2023

Remote denial of service in IPv6 fragment reassembly

FreeBSD-SA-23:07.bhyve

1 August 2023

bhyve privileged guest escape via fwctl

FreeBSD-SA-23:08.ssh

1 August 2023

Potential remote code execution via ssh-agent forwarding

FreeBSD-SA-23:09.pam_krb5

1 August 2023

Network authentication attack via pam_krb5

FreeBSD-SA-23:10.pf

6 September 2023

pf incorrectly handles multiple IPv6 fragment headers

FreeBSD-SA-23:11.wifi

6 September 2023

Wi-Fi encryption bypass

FreeBSD-SA-23:12.msdosfs

3 October 2023

msdosfs data disclosure

FreeBSD-SA-23:13.capsicum

3 October 2023

copy_file_range insufficient capability rights check

FreeBSD-SA-23:14.smccc

3 October 2023

arm64 boot CPUs may lack speculative execution protections

FreeBSD-SA-23:15.stdio

8 November 2023

libc stdio buffer overflow

FreeBSD-SA-23:16.cap_net

8 November 2023

Incorrect libcap_net limitation list manipulation

FreeBSD-SA-23:17.pf

5 December 2023

TCP spoofing vulnerability in pf(4)

FreeBSD-SA-23:18.nfsclient

12 December 2023

NFS client data corruption and kernel memory disclosure

FreeBSD-SA-23:19.openssh

19 December 2023

Prefix Truncation Attack in the SSH protocol

FreeBSD-SA-24:01.bhyveload

14 February 2024

bhyveload(8) host file access

FreeBSD-SA-24:02.tty

14 February 2024

jail(2) information leak

Errata Notices

Errata Date Topic

FreeBSD-EN-23:06.loader

21 June 2023

x86 kernel console configuration

FreeBSD-EN-23:07.mpr

21 June 2023

mpr(4) may fail to initialize devices

FreeBSD-EN-23:08.vnet

1 August 2023

VNET and DPCPU module panic on arm64

FreeBSD-EN-23:09.freebsd-update

6 September 2023

freebsd-update incorrectly merges files on upgrade

FreeBSD-EN-23:10.pci

6 September 2023

PCI-e hot-plug is broken with certain devices

FreeBSD-EN-23:11.caroot

6 September 2023

Root certificate bundle update

FreeBSD-EN-23:12.freebsd-update

3 October 2023

freebsd-update to 14.0 fails

FreeBSD-EN-23:13.freebsd-update

8 November 2023

freebsd-update does not handle deep boot environments

FreeBSD-EN-23:14.regcomp

8 November 2023

Incorrect regular expression escape handling

FreeBSD-EN-23:16.openzfs

1 December 2023

OpenZFS data corruption

FreeBSD-EN-23:01.tzdata

14 February 2024

Timezone database information update

FreeBSD-EN-23:02.libutil

14 February 2024

Login class resource limits and CPU mask bypass

FreeBSD-EN-23:03.kqueue

14 February 2024

kqueue_close(2) page fault on exit using rfork(2)

Open Issues

No open issues.

Late-Breaking News

No late-breaking news.

Erratas in Announcement

  • tzdata version is 2023c and not 2023b.

  • OpenSSH version is 9.3p1 and not 9.2p1.


Last modified on: February 14, 2024 by Philip Paeps