=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v retrieving revision 1.526 retrieving revision 1.527 diff -c -r1.526 -r1.527 *** www/errata.html 2005/02/28 19:42:35 1.526 --- www/errata.html 2005/03/08 10:09:00 1.527 *************** *** 54,64 **** consult the OpenBSD FAQ.

All architectures

! 010: RELIABILITY FIX: January 11, 2005
A bug in the tcp(4) stack allows an invalid argument to be used in calculating the TCP --- 54,88 ---- consult the OpenBSD FAQ.
+ ! ! ! ! ! ! ! ! ! ! ! ! ! !
- + 011: SECURITY FIX: February 28, 2005 i386 only
  + More stringent checking should be done in the + copy(9) + functions to prevent their misuse. +
  + + A source code patch exists which remedies this problem.
  +
  +
- ! 010: RELIABILITY FIX: January 11, 2005 All architectures
  A bug in the tcp(4) stack allows an invalid argument to be used in calculating the TCP *************** *** 70,76 ****
- ! 009: SECURITY FIX: January 12, 2005
  httpd(8) 's mod_include module fails to properly validate the length of user supplied tag strings prior to copying them to a local buffer, --- 94,100 ----
- ! 009: SECURITY FIX: January 12, 2005 All architectures
  httpd(8) 's mod_include module fails to properly validate the length of user supplied tag strings prior to copying them to a local buffer, *************** *** 84,90 ****
- ! 008: RELIABILITY FIX: January 6, 2005
  The getcwd(3) library function contains a memory management error, which causes failure --- 108,114 ----
- ! 008: RELIABILITY FIX: January 6, 2005 All architectures
  The getcwd(3) library function contains a memory management error, which causes failure *************** *** 95,101 ****
- ! 007: SECURITY FIX: December 14, 2004
  On systems running isakmpd(8) it is possible for a local user to cause kernel memory corruption --- 119,125 ----
- ! 007: SECURITY FIX: December 14, 2004 All architectures
  On systems running isakmpd(8) it is possible for a local user to cause kernel memory corruption *************** *** 108,131 ****
- ! 006: RELIABILITY FIX: November 21, 2004
  Fix for transmit side breakage on macppc and mbuf leaks with xl(4).
  A source code patch exists which remedies this problem.
- ! 005: RELIABILITY FIX: November 21, 2004
  Wrong calculation of NAT-D payloads may cause interoperability problems between isakmpd(8) and other ISAKMP/IKE implementations.
  A source code patch exists which remedies this problem.
- ! 004: RELIABILITY FIX: November 10, 2004
  Due to a bug in lynx(1) it is possible for pages such as --- 132,157 ----
- ! 006: RELIABILITY FIX: November 21, 2004 All architectures
  Fix for transmit side breakage on macppc and mbuf leaks with xl(4).
  A source code patch exists which remedies this problem.
  
  +
- ! 005: RELIABILITY FIX: November 21, 2004 All architectures
  Wrong calculation of NAT-D payloads may cause interoperability problems between isakmpd(8) and other ISAKMP/IKE implementations.
  A source code patch exists which remedies this problem.
  +
- ! 004: RELIABILITY FIX: November 10, 2004 All architectures
  Due to a bug in lynx(1) it is possible for pages such as *************** *** 137,144 **** A source code patch exists which remedies this problem.
- ! 003: RELIABILITY FIX: November 10, 2004
  pppd(8) contains a bug that allows an attacker to crash his own connection, but it cannot be used to deny service to other users. --- 163,171 ---- A source code patch exists which remedies this problem.
  
  +
- ! 003: RELIABILITY FIX: November 10, 2004 All architectures
  pppd(8) contains a bug that allows an attacker to crash his own connection, but it cannot be used to deny service to other users. *************** *** 146,153 **** A source code patch exists which remedies this problem.
- ! 002: RELIABILITY FIX: November 10, 2004
  BIND contains a bug which results in BIND trying to contact nameservers via IPv6, even in cases where IPv6 connectivity is non-existent. This results in unneccessary timeouts and thus slow DNS queries. --- 173,181 ---- A source code patch exists which remedies this problem.
  
  +
- ! 002: RELIABILITY FIX: November 10, 2004 All architectures
  BIND contains a bug which results in BIND trying to contact nameservers via IPv6, even in cases where IPv6 connectivity is non-existent. This results in unneccessary timeouts and thus slow DNS queries. *************** *** 155,162 **** A source code patch exists which remedies this problem.
- ! 001: RELIABILITY FIX: November 10, 2004
  Fix detection of tape blocksize during device open. Corrects problem with restore(8).
  --- 183,191 ---- A source code patch exists which remedies this problem.
  
  +
- ! 001: RELIABILITY FIX: November 10, 2004 All architectures
  Fix detection of tape blocksize during device open. Corrects problem with restore(8).
  *************** *** 165,265 ****
-
- -
alpha
-
- No problems identified yet. -
-
- -
amd64
-
- No problems identified yet. -
-
- -
cats
-
- No problems identified yet. -
-
- -
hp300
-
- No problems identified yet. -
-
- -
hppa
-
- No problems identified yet. -
-
- -
i386
-
- - 011: SECURITY FIX: February 28, 2005
  - More stringent checking should be done in the - copy(9) - functions to prevent their misuse.
  - - A source code patch exists which remedies this problem.
  -
  -
-
- -
luna88k
-
- No problems identified yet. -
-
- -
mac68k
-
- No problems identified yet. -
-
- -
macppc
-
- No problems identified yet. -
-
- -
mvme68k
-
- No problems identified yet. -
-
- -
mvme88k
-
- No problems identified yet. -
-
- -
sparc
-
- No problems identified yet. -
-
- -
sparc64
-
- No problems identified yet. -
-
- -
vax
-
- No problems identified yet. -
-
-
For OpenBSD patch branch information, please refer here.
For important packages updates, please refer here.
--- 194,201 ---- *************** *** 285,291 ****
www@openbsd.org !
$OpenBSD: errata.html,v 1.526 2005/02/28 19:42:35 brad Exp $ --- 221,227 ----
www@openbsd.org !
$OpenBSD: errata.html,v 1.527 2005/03/08 10:09:00 tom Exp $

All architectures

alpha

amd64

cats

hp300

hppa

i386

luna88k

mac68k

macppc

mvme68k

mvme88k

sparc

sparc64

vax