===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.432
retrieving revision 1.433
diff -c -r1.432 -r1.433
*** www/errata.html 2003/03/03 18:16:12 1.432
--- www/errata.html 2003/03/04 13:03:43 1.433
***************
*** 70,76 ****
007: SECURITY FIX: February 22, 2003
In
ssl(8) an information leak can occur via timing by performing a MAC computation
! even if incorrrect block cipher padding has been found, this is a
countermeasure. Also, check for negative sizes in memory allocation routines.
A
source code patch exists which fixes these two issues.
--- 70,76 ----
007: SECURITY FIX: February 22, 2003
In
ssl(8) an information leak can occur via timing by performing a MAC computation
! even if incorrect block cipher padding has been found, this is a
countermeasure. Also, check for negative sizes in memory allocation routines.
A
source code patch exists which fixes these two issues.
***************
*** 218,224 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.432 2003/03/03 18:16:12 jufi Exp $