FreeBSD The Power to Serve

FreeBSD 14.1-RELEASE Errata

Abstract

This document lists errata items for FreeBSD 14.1-RELEASE, containing significant information discovered after the release or too late in the release cycle to be otherwise included in the release documentation. This information includes security advisories, as well as news relating to the software or documentation that could affect its operation or usability. An up-to-date version of this document should always be consulted before installing this version of FreeBSD.

This errata document for FreeBSD 14.1-RELEASE will be maintained until the release of FreeBSD 14.2-RELEASE.

Introduction

This errata document contains "late-breaking news" about FreeBSD 14.1-RELEASE. Before installing this version, it is important to consult this document to learn about any post-release discoveries or problems that may already have been found and fixed.

Any version of this errata document actually distributed with the release (for example, on a CDROM distribution) will be out of date by definition, but other copies are kept updated on the Internet and should be consulted as the "current errata" for this release. These other copies of the errata are located at https://www.FreeBSD.org/releases/, plus any sites which keep up-to-date mirrors of this location.

Source and binary snapshots of FreeBSD 14-STABLE also contain up-to-date copies of this document (as of the time of the snapshot).

For a list of all FreeBSD CERT security advisories, see https://www.FreeBSD.org/security/.

Security Advisories

Advisory Date Topic

FreeBSD-SA-24:04.openssh

1 July 2024

OpenSSH pre-authentication remote code execution

FreeBSD-SA-24:05.pf

7 August 2024

pf incorrectly matches different ICMPv6 states in the state table

FreeBSD-SA-24:06.ktrace

7 August 2024

ktrace(2) fails to detach when executing a setuid binary

FreeBSD-SA-24:07.nfsclient

7 August 2024

NFS client accepts file names containing path separators

FreeBSD-SA-24:08.openssh

7 August 2024

OpenSSH pre-authentication async signal safety issue

FreeBSD-SA-24:09.libnv

4 September 2024

Multiple vulnerabilities in libnv

FreeBSD-SA-24:10.bhyve

4 September 2024

bhyve(8) privileged guest escape via TPM device passthrough

FreeBSD-SA-24:11.ctl

4 September 2024

Multiple issues in ctl(4) CAM Target Layer

FreeBSD-SA-24:12.bhyve

4 September 2024

bhyve(8) privileged guest escape via USB controller

FreeBSD-SA-24:13.openssl

4 September 2024

Possible DoS in X.509 name checks in OpenSSL

FreeBSD-SA-24:14.umtx

4 September 2024

umtx Kernel panic or Use-After-Free

FreeBSD-SA-24:15.bhyve

19 September 2024

bhyve(8) out-of-bounds read access via XHCI emulation

FreeBSD-SA-24:16.libnv

19 September 2024

Integer overflow in libnv

FreeBSD-SA-24:17.bhyve

29 October 2024

Multiple issues in the bhyve hypervisor

FreeBSD-SA-24:18.ctl

29 October 2024

Unbounded allocation in ctl(4) CAM Target Layer

FreeBSD-SA-24:19.fetch

29 October 2024

Certificate revocation list fetch(1) option fails

Errata Notices

Errata Date Topic

FreeBSD-EN-24:10.zfs

19 June 2024

Kernel memory leak in ZFS

FreeBSD-EN-24:13.libc++

19 June 2024

Incorrect size passed to heap allocated std::string delete

FreeBSD-EN-24:14.ifconfig

7 August 2024

Incorrect ifconfig netmask assignment

FreeBSD-EN-24:15.calendar

4 September 2024

cron(8) / periodic(8) session login

FreeBSD-EN-24:16.pf

19 September 2024

Incorrect ICMPv6 state handling in pf

FreeBSD-EN-24:17.pam_xdg

29 October 2024

XDG runtime directory’s file descriptor leak at login

Open Issues

No open issues.

Late-Breaking News

No late-breaking news.


Last modified on: November 13, 2024 by Philip Paeps