===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.526
retrieving revision 1.527
diff -c -r1.526 -r1.527
*** www/errata.html 2005/02/28 19:42:35 1.526
--- www/errata.html 2005/03/08 10:09:00 1.527
***************
*** 54,64 ****
consult the OpenBSD FAQ.
! All architectures
-
! 010: RELIABILITY FIX: January 11, 2005
A bug in the
tcp(4)
stack allows an invalid argument to be used in calculating the TCP
--- 54,88 ----
consult the OpenBSD FAQ.
+
!
!
!
!
!
!
!
!
!
!
!
!
!
!
+ -
+ 011: SECURITY FIX: February 28, 2005 i386 only
+ More stringent checking should be done in the
+ copy(9)
+ functions to prevent their misuse.
+
+
+ A source code patch exists which remedies this problem.
+
+
-
! 010: RELIABILITY FIX: January 11, 2005 All architectures
A bug in the
tcp(4)
stack allows an invalid argument to be used in calculating the TCP
***************
*** 70,76 ****
-
! 009: SECURITY FIX: January 12, 2005
httpd(8)
's mod_include module fails to properly validate the length of
user supplied tag strings prior to copying them to a local buffer,
--- 94,100 ----
-
! 009: SECURITY FIX: January 12, 2005 All architectures
httpd(8)
's mod_include module fails to properly validate the length of
user supplied tag strings prior to copying them to a local buffer,
***************
*** 84,90 ****
-
! 008: RELIABILITY FIX: January 6, 2005
The
getcwd(3)
library function contains a memory management error, which causes failure
--- 108,114 ----
-
! 008: RELIABILITY FIX: January 6, 2005 All architectures
The
getcwd(3)
library function contains a memory management error, which causes failure
***************
*** 95,101 ****
-
! 007: SECURITY FIX: December 14, 2004
On systems running
isakmpd(8)
it is possible for a local user to cause kernel memory corruption
--- 119,125 ----
-
! 007: SECURITY FIX: December 14, 2004 All architectures
On systems running
isakmpd(8)
it is possible for a local user to cause kernel memory corruption
***************
*** 108,131 ****
-
! 006: RELIABILITY FIX: November 21, 2004
Fix for transmit side breakage on macppc and mbuf leaks with
xl(4).
A source code patch exists which remedies this problem.
-
! 005: RELIABILITY FIX: November 21, 2004
Wrong calculation of NAT-D payloads may cause interoperability problems between
isakmpd(8)
and other ISAKMP/IKE implementations.
A source code patch exists which remedies this problem.
-
! 004: RELIABILITY FIX: November 10, 2004
Due to a bug in
lynx(1)
it is possible for pages such as
--- 132,157 ----
-
! 006: RELIABILITY FIX: November 21, 2004 All architectures
Fix for transmit side breakage on macppc and mbuf leaks with
xl(4).
A source code patch exists which remedies this problem.
+
-
! 005: RELIABILITY FIX: November 21, 2004 All architectures
Wrong calculation of NAT-D payloads may cause interoperability problems between
isakmpd(8)
and other ISAKMP/IKE implementations.
A source code patch exists which remedies this problem.
+
-
! 004: RELIABILITY FIX: November 10, 2004 All architectures
Due to a bug in
lynx(1)
it is possible for pages such as
***************
*** 137,144 ****
A source code patch exists which remedies this problem.
-
! 003: RELIABILITY FIX: November 10, 2004
pppd(8)
contains a bug that allows an attacker to crash his own connection, but it cannot
be used to deny service to other users.
--- 163,171 ----
A source code patch exists which remedies this problem.
+
-
! 003: RELIABILITY FIX: November 10, 2004 All architectures
pppd(8)
contains a bug that allows an attacker to crash his own connection, but it cannot
be used to deny service to other users.
***************
*** 146,153 ****
A source code patch exists which remedies this problem.
-
! 002: RELIABILITY FIX: November 10, 2004
BIND contains a bug which results in BIND trying to contact nameservers via IPv6, even in
cases where IPv6 connectivity is non-existent. This results in unneccessary timeouts and
thus slow DNS queries.
--- 173,181 ----
A source code patch exists which remedies this problem.
+
-
! 002: RELIABILITY FIX: November 10, 2004 All architectures
BIND contains a bug which results in BIND trying to contact nameservers via IPv6, even in
cases where IPv6 connectivity is non-existent. This results in unneccessary timeouts and
thus slow DNS queries.
***************
*** 155,162 ****
A source code patch exists which remedies this problem.
-
! 001: RELIABILITY FIX: November 10, 2004
Fix detection of tape blocksize during device open. Corrects problem with
restore(8).
--- 183,191 ----
A source code patch exists which remedies this problem.
+
-
! 001: RELIABILITY FIX: November 10, 2004 All architectures
Fix detection of tape blocksize during device open. Corrects problem with
restore(8).
***************
*** 165,265 ****
-
-
-
alpha
-
- - No problems identified yet.
-
-
-
-
amd64
-
- - No problems identified yet.
-
-
-
-
cats
-
- - No problems identified yet.
-
-
-
-
hp300
-
- - No problems identified yet.
-
-
-
-
hppa
-
- - No problems identified yet.
-
-
-
-
i386
-
-
-
-
luna88k
-
- - No problems identified yet.
-
-
-
-
mac68k
-
- - No problems identified yet.
-
-
-
-
macppc
-
- - No problems identified yet.
-
-
-
-
mvme68k
-
- - No problems identified yet.
-
-
-
-
mvme88k
-
- - No problems identified yet.
-
-
-
-
sparc
-
- - No problems identified yet.
-
-
-
-
sparc64
-
- - No problems identified yet.
-
-
-
-
vax
-
- - No problems identified yet.
-
-
-
For OpenBSD patch branch information, please refer here.
For important packages updates, please refer here.
--- 194,201 ----
***************
*** 285,291 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.526 2005/02/28 19:42:35 brad Exp $