www/errata.html - diff

Return to errata.html CVS log

Up to [local] / www

Diff for /www/errata.html between version 1.421 and 1.422

-version 1.421, 2002/11/05 15:30:43
+version 1.422, 2002/11/06 23:37:17
 Line 53
 Line 53
 Line 53
  <a name=all></a>
  <li><h3><font color=#e00000>All architectures</font></h3>
  <ul>
+ <a name=pool></a>
+ <li><font color=#009000><strong>004: RELIABILITY FIX: November 6, 2002</strong></font><br>
+ A logic error in the
+ <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pool&amp;sektion=9">pool</a>
+ kernel memory allocator could cause memory corruption in low-memory situations,
+ causing the system to crash.<br>
+ <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/004_pool.patch">A
+ source code patch exists which remedies the problem</a>.
+ <p>
+ <a name=smrsh></a>
+ <li><font color=#009000><strong>003: SECURITY FIX: November 6, 2002</strong></font><br>
+ An attacker can bypass the restrictions imposed by sendmail's restricted shell,
+ <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smrsh&amp;sektion=8">smrsh(8)</a>,
+ and execute arbitrary commands with the privileges of his own account.<br>
+ <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/003_smrsh.patch">A
+ source code patch exists which remedies the problem</a>.
+ <p>
+ <a name=pfbridge></a>
+ <li><font color=#009000><strong>002: RELIABILITY FIX: November 6, 2002</strong></font><br>
+ Network
+ <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bridge&amp;sektion=4">bridges</a>
+ running
+ <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf</a>
+ with scrubbing enabled could cause mbuf corruption,
+ causing the system to crash.<br>
+ <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/002_pfbridge.patch">A
+ source code patch exists which remedies the problem</a>.
+ <p>
  <a name=kadmin></a>
  <li><font color=#009000><strong>001: SECURITY FIX: October 21, 2002</strong></font><br>
  A buffer overflow can occur in the