New Host Introduction, From Bridging to Routing With FreeBSD, Sovereign Tech Fund to Invest €686,400 in FreeBSD Infrastructure Modernization, The Dying Computer Museum, In practice, abstractions hide their underlying details, LZ4 Compression Algorithm Gets Multi-Threaded Update, Using Windows or Linux on FreeBSD's vm-bhyve, and more.
As of October 1st, 2024, FreeBSD 14.0 will reach end-of-life and will no longer be supported by the FreeBSD Security Team. Users of FreeBSD 14.0 are strongly encouraged to upgrade to a newer release as soon as possible.
It is possible for an attacker to overwrite portions of memory (in userland or the kernel) as the allocated buffer might be smaller than the data received from a malicious process. This vulnerability could result in privilege escalation or cause a system panic.
A malicious, privileged software running in a guest VM can exploit the vulnerability to crash the hypervisor process or potentially achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process.
Patches for a previous security advisory, FreeBSD-SA-24:05, were incomplete and introduced some overly strict pf state tracking for ICMPv6 packets.
New Host Introduction, From Bridging to Routing With FreeBSD, Sovereign Tech Fund to Invest €686,400 in FreeBSD Infrastructure Modernization, The Dying Computer Museum, In practice, abstractions hide their underlying details, LZ4 Compression Algorithm Gets Multi-Threaded Update, Using Windows or Linux on FreeBSD's vm-bhyve, and more.
For those unfamiliar with the process: this is not the 7.6 release, but is part of the standard build-up to the release.
The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 13.4-RELEASE. This is the fifth release of the stable/13 branch. Since this release is occurring late in a legacy stable branch, there are few new features; rather, the focus is primarily on maintenance. As such, changes since 13.3-RELEASE consist mostly of bug fixes, driver updates, and new versions of externally-maintained software.
Errata patches for libexpat and kernel have been released for OpenBSD 7.5 and 7.4. Binary updates for the amd64, arm64 and i386 platform are available via the syspatch utility.
The Valuable News weekly series is dedicated to provide summary about news, articles and other interesting stuff mostly but not always related to the UNIX/BSD/Linux systems.
This tutorial walks you through moving an entire FreeBSD system, from a physical host to a VM or vice versa, with step-by-step instructions for ZFS and bootloader configuration.