===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.210
retrieving revision 1.211
diff -c -r1.210 -r1.211
*** www/errata.html 1999/12/08 01:34:20 1.210
--- www/errata.html 1999/12/14 19:41:42 1.211
***************
*** 60,67 ****
SECURITY FIX: Dec 2, 1999
A buffer overflow in the RSAREF code included in the
USA version of the libssl package (called sslUSA, is
! possibly exploitable in httpd, ssh, or isakmpd, if SSL/RSA features
are enabled or used.
NOTE: International users using the ssl26 package are not affected.
To check what package you are using, use
--- 60,69 ----
SECURITY FIX: Dec 2, 1999
A buffer overflow in the RSAREF code included in the
USA version of the libssl package (called sslUSA, is
! possibly exploitable in isakmpd if SSL/RSA features
are enabled or used.
+ OpenSSH and httpd (with -DSSL) are not
+ vulnerable.
NOTE: International users using the ssl26 package are not affected.
To check what package you are using, use
***************
*** 224,230 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.210 1999/12/08 01:34:20 deraadt Exp $