=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v retrieving revision 1.528 retrieving revision 1.529 diff -c -r1.528 -r1.529 *** www/errata.html 2005/03/17 01:30:03 1.528 --- www/errata.html 2005/03/30 17:18:51 1.529 *************** *** 72,77 **** --- 72,101 ----

+ 014: SECURITY FIX: March 30, 2005 All architectures
+ Due to buffer overflows in + telnet(1) + , a malicious server or man-in-the-middle attack could allow execution of + arbitrary code with the privileges of the user invoking + telnet(1) + . +
+ + A source code patch exists which remedies this problem.
+
+ +
+ 013: RELIABILITY FIX: March 30, 2005 All architectures
+ Bugs in the + tcp(4) + stack can lead to memory exhaustion or processing of TCP segments with + invalid SACK options and cause a system crash. +
+ + A source code patch exists which remedies this problem.
+
+
012: SECURITY FIX: March 16, 2005 amd64 only
More stringent checking should be done in the *************** *** 232,238 ****
www@openbsd.org !
$OpenBSD: errata.html,v 1.528 2005/03/17 01:30:03 brad Exp $ --- 256,262 ----
www@openbsd.org !
$OpenBSD: errata.html,v 1.529 2005/03/30 17:18:51 brad Exp $