From cb4cb93f58a2ed631a3b994f480f5145aa6b35f0 Mon Sep 17 00:00:00 2001
From: "Bruce A. Mah" <bmah@FreeBSD.org>
Date: Fri, 6 Feb 2004 21:36:48 +0000
Subject: [PATCH] New release note: SA-04:02.

---
 release/doc/en_US.ISO8859-1/relnotes/article.sgml    | 11 +++++++++++
 release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 11 +++++++++++
 2 files changed, 22 insertions(+)

diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
index b7d3c5c8d22..f786980f257 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml
@@ -129,6 +129,17 @@
       group.  For more information, see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:01.mksnap_ffs.asc">FreeBSD-SA-04:01</ulink>.</para>
 
+    <para>A bug with the System V Shared Memory interface
+      (specifically the &man.shmat.2; system call) has been fixed.
+      This bug can cause a shared memory segment to reference
+      unallocated kernel memory.  In turn, this can permit a local
+      attacker to gain unauthorized access to parts of kernel memory,
+      possibly resulting in disclosure of sensitive information,
+      bypass of access control mechanisms, or privilege escalation.
+      More details can be found in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:02.shmat.asc">FreeBSD-SA-04:02</ulink>.
+      &merged;</para>
+
   </sect2>
 
   <sect2 id="kernel">
diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
index b7d3c5c8d22..f786980f257 100644
--- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
+++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml
@@ -129,6 +129,17 @@
       group.  For more information, see security advisory <ulink
       url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:01.mksnap_ffs.asc">FreeBSD-SA-04:01</ulink>.</para>
 
+    <para>A bug with the System V Shared Memory interface
+      (specifically the &man.shmat.2; system call) has been fixed.
+      This bug can cause a shared memory segment to reference
+      unallocated kernel memory.  In turn, this can permit a local
+      attacker to gain unauthorized access to parts of kernel memory,
+      possibly resulting in disclosure of sensitive information,
+      bypass of access control mechanisms, or privilege escalation.
+      More details can be found in security advisory <ulink
+      url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:02.shmat.asc">FreeBSD-SA-04:02</ulink>.
+      &merged;</para>
+
   </sect2>
 
   <sect2 id="kernel">