===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.491
retrieving revision 1.492
diff -c -r1.491 -r1.492
*** www/errata.html 2004/05/13 13:50:09 1.491
--- www/errata.html 2004/05/20 21:05:59 1.492
***************
*** 56,61 ****
--- 56,73 ----
All architectures
+ -
+ 007: SECURITY FIX: May 20,
+ 2004
+ A heap overflow in the
+ cvs(1)
+ server has been discovered that can be exploited by clients sending
+ malformed requests, enabling these clients to run arbitrary code
+ with the same privileges as the CVS server program.
+
+
+ A source code patch exists which remedies this problem.
+
-
006: SECURITY FIX: May 13,
2004
***************
*** 218,224 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.491 2004/05/13 13:50:09 brad Exp $