FreeBSD 10.2-STABLE Release Notes

The FreeBSD Project

FreeBSD is a registered trademark of the FreeBSD Foundation.

IBM, AIX, OS/2, PowerPC, PS/2, S/390, and ThinkPad are trademarks of International Business Machines Corporation in the United States, other countries, or both.

IEEE, POSIX, and 802 are registered trademarks of Institute of Electrical and Electronics Engineers, Inc. in the United States.

Intel, Celeron, Centrino, Core, EtherExpress, i386, i486, Itanium, Pentium, and Xeon are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries.

SPARC, SPARC64, and UltraSPARC are trademarks of SPARC International, Inc in the United States and other countries. SPARC International, Inc owns all of the SPARC trademarks and under licensing agreements allows the proper use of these trademarks by its members.

Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in this document, and the FreeBSD Project was aware of the trademark claim, the designations have been followed by the or the ® symbol.

Last modified on 2015-10-07 by gjb.

The release notes for FreeBSD 10.2-STABLE contain a summary of the changes made to the FreeBSD base system on the 10.2-STABLE development line. This document lists applicable security advisories that were issued since the last release, as well as significant changes to the FreeBSD kernel and userland. Some brief remarks on upgrading are also presented.

[ Split HTML / Single HTML ]

Table of Contents
1. Introduction
2. Upgrading from Previous Releases of FreeBSD
3. Security and Errata
3.1. Security Advisories
3.2. Errata Notices
4. Userland
4.1. Userland Configuration Changes
4.2. Userland Application Changes
4.3. Contributed Software
4.4. Installation and Configuration Tools
4.5. /etc/rc.d Scripts
4.6. /etc/periodic Scripts
4.7. Runtime Libraries and API
4.8. ABI Compatibility
5. Kernel
5.1. Kernel Bug Fixes
5.2. Kernel Configuration
5.3. System Tuning and Controls
6. Devices and Drivers
6.1. Device Drivers
6.2. Storage Drivers
6.3. Network Drivers
7. Hardware Support
7.1. Hardware Support
7.2. Virtualization Support
7.3. ARM Support
8. Storage
8.1. General Storage
8.2. Networked Storage
8.3. ZFS
8.4. geom(4)
9. Boot Loader Changes
9.1. Boot Loader Changes
9.2. Boot Menu Changes
10. Networking
10.1. Network Protocols
11. Ports Collection and Package Infrastructure
11.1. Infrastructure Changes
11.2. Packaging Changes
12. Documentation
12.1. Documentation Source Changes
12.2. Documentation Toolchain Changes
13. Release Engineering and Integration
13.1. Integration Changes

1. Introduction

This document contains the release notes for FreeBSD 10.2-STABLE. It describes recently added, changed, or deleted features of FreeBSD. It also provides some notes on upgrading from previous versions of FreeBSD.

The snapshot distribution to which these release notes apply represents a point along the 10.2-STABLE development branch between 10.2-RELEASE and the future 10.3-RELEASE. Information regarding pre-built, binary snapshot distributions along this branch can be found at

All users are encouraged to consult the release errata before installing FreeBSD. The errata document is updated with late-breaking information discovered late in the release cycle or after the release. Typically, it contains information on known bugs, security advisories, and corrections to documentation. An up-to-date copy of the errata for FreeBSD 10.2-STABLE can be found on the FreeBSD Web site.

This document describes the most user-visible new or changed features in FreeBSD since 10.2-RELEASE.

Typical release note items document recent security advisories issued after 10.2-RELEASE, new drivers or hardware support, new commands or options, major bug fixes, or contributed software upgrades. They may also list changes to major ports/packages or release engineering practices. Clearly the release notes cannot list every single change made to FreeBSD between releases; this document focuses primarily on security advisories, user-visible changes, and major architectural improvements.

2. Upgrading from Previous Releases of FreeBSD

[amd64,i386] Binary upgrades between RELEASE versions (and snapshots of the various security branches) are supported using the freebsd-update(8) utility. The binary upgrade procedure will update unmodified userland utilities, as well as unmodified GENERIC kernel distributed as a part of an official FreeBSD release. The freebsd-update(8) utility requires that the host being upgraded have Internet connectivity.

Source-based upgrades (those based on recompiling the FreeBSD base system from source code) from previous versions are supported, according to the instructions in /usr/src/UPDATING.


Upgrading FreeBSD should only be attempted after backing up all data and configuration files.

3. Security and Errata

This section lists the various Security Advisories and Errata Notices since 10.2-RELEASE.

3.1. Security Advisories

FreeBSD-SA-15:20.expat18 August 2015

Fix multiple integer overflows in libbsdxml(3).

FreeBSD-SA-15:22.openssh25 August 2015

Multiple vulnerabilities

FreeBSD-SA-15:24.rpcbind29 September 2015

Remote denial of service

FreeBSD-SA-15:25.ntp26 October 2015

Multiple vulnerabilities

FreeBSD-SA-15:26.openssl5 December 2015

Multiple vulnerabilities

FreeBSD-SA-16:01.sctp14 January 2016

ICMPv6 error message vulnerability

FreeBSD-SA-16:02.ntp14 January 2016

Panic threshold bypass vulnerability

FreeBSD-SA-16:03.linux14 January 2016

Incorrect futex handling

FreeBSD-SA-16:04.linux14 January 2016

setgroups(2) system call vulnerability

FreeBSD-SA-16:05.tcp14 January 2016

MD5 signature denial of service

FreeBSD-SA-16:06.bsnmpd14 January 2016

Insecure default configuration file permissions

FreeBSD-SA-16:07.openssh14 January 2016

OpenSSH client information leak

FreeBSD-SA-16:09.ntp27 January 2016

Multiple vulnerabilities.

FreeBSD-SA-16:10.linux27 January 2016

issetugid(2) system call vulnerability.

3.2. Errata Notices

FreeBSD-EN-15:11.toolchain18 August 2015

Fix make(1) syntax errors when upgrading from FreeBSD 9.x and earlier.

FreeBSD-EN-15:12.netstat18 August 2015

Fix incorrect netstat(1) data handling on 32-bit systems.

FreeBSD-EN-15:13.vidcontrol18 August 2015

Allow size argument to vidcontrol(1) for syscons(4).

FreeBSD-EN-15:15.pkg25 August 2015

Insufficient check of supported pkg(7) signature methods.

FreeBSD-EN-15:16.pw16 September 2015

Fix pw(8) regression when creating numeric users or groups.

FreeBSD-EN-15:17.libc16 September 2015

Fix libc handling of signals for multi-threaded processes.

FreeBSD-EN-15:18.pkg16 September 2015

Implement pubkey support for pkg(7) bootstrap.

FreeBSD-EN-15:19.kqueue4 November 2015

kqueue(2) write events never fire for files larger than 2GB.

FreeBSD-EN-15:20.vm4 November 2015

Applications exiting due to segmentation violation on a correct memory address.

FreeBSD-EN-16:01.filemon14 January 2016

bmake and filemon(4) stability issues.

FreeBSD-EN-16:02.pf14 January 2016

Invalid TCP checksum issue.

FreeBSD-EN-16:03.yplib14 January 2016

YP/NIS library bug.

4. Userland

This section covers changes and additions to userland applications, contributed software, and system utilities.

4.1. Userland Configuration Changes


4.2. Userland Application Changes

The jail(8) utility has been updated to include a new flag, -l, which ensures a clean environment in the target jail when used. Additionally, jail(8) will run a shell within the target jail when run no commands are specified. [r286064]

The mkimg(1) utility has been updated to include support for NTFS filesystems in both MBR and GPT partitioning schemes. [r287122]

The ar(1) utility now enables deterministic mode (-D) by default. This behavior can be disabled by specifying the -U flag. [r288202] (Sponsored by The FreeBSD Foundation)

The pciconf(8) utility has been updated to use the PCI ID database from the misc/pciids package, if present, falling back to the PCI ID database in the FreeBSD base system. [r287746]

A new utility, sesutil(8), has been added, which is used to manage ses(4) devices. [r288710] (Sponsored by

4.3. Contributed Software

The libarchive(3) library has been updated to properly skip a sparse file entry in a tar(1) file, which would previously produce errors. [r286082]

Timezone data files have been updated to version 2015f. [r286751]

4.4. Installation and Configuration Tools


4.5. /etc/rc.d Scripts


4.6. /etc/periodic Scripts


4.7. Runtime Libraries and API


4.8. ABI Compatibility


5. Kernel

This section covers changes to kernel configurations, system tuning, and system control parameters that are not otherwise categorized.

5.1. Kernel Bug Fixes

The kqueue(2) system call has been updated to handle write events to files larger than 2 gigabytes. [r288167] (Sponsored by Multiplay)

5.2. Kernel Configuration


5.3. System Tuning and Controls

The uart(4) driver has been updated to allow tuning pulses per second captured in the CTS line during runtime, whereas previously only the DCD line could be used without rebuilding the kernel. [r287037]

6. Devices and Drivers

This section covers changes and additions to devices and device drivers since 10.2-RELEASE.

6.1. Device Drivers


6.2. Storage Drivers

The CTL High Availability implementation has been rewritten. [r288732] (Sponsored by iXsystems)

The ctl(4) driver has been updated to support CD-ROM and removable devices. [r288810]

6.3. Network Drivers


7. Hardware Support

This section covers general hardware support for physical machines, hypervisors, and virtualization environments, as well as hardware changes and updates that do not otherwise fit in other sections of this document.

7.1. Hardware Support


7.2. Virtualization Support

The xen(4) driver has been updated to include support for blkif indirect segment I/O. [r287802]

7.3. ARM Support


8. Storage

This section covers changes and additions to file systems and other storage subsystems, both local and networked.

8.1. General Storage


8.2. Networked Storage


8.3. ZFS

The zfs(8) l2arc code has been updated to take ashift into account when gathering buffers to be written to the l2arc device. [r287665] (Sponsored by ClusterHQ)

8.4. geom(4)


9. Boot Loader Changes

This section covers the boot loader, boot menu, and other boot-related changes.

9.1. Boot Loader Changes


9.2. Boot Menu Changes


10. Networking

This section describes changes that affect networking in FreeBSD.

10.1. Network Protocols


11. Ports Collection and Package Infrastructure

This section covers changes to the FreeBSD Ports Collection, package infrastructure, and package maintenance and installation tools.

11.1. Infrastructure Changes


11.2. Packaging Changes


12. Documentation

This section covers changes to the FreeBSD Documentation Project sources and toolchain.

12.1. Documentation Source Changes


12.2. Documentation Toolchain Changes


13. Release Engineering and Integration

This section convers changes that are specific to the FreeBSD Release Engineering processes.

13.1. Integration Changes


This file, and other release-related documents, can be downloaded from

For questions about FreeBSD, read the documentation before contacting <>.

All users of FreeBSD 10.2-STABLE should subscribe to the <> mailing list.

For questions about this documentation, e-mail <>.