===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.558
retrieving revision 1.559
diff -c -r1.558 -r1.559
*** www/errata.html 2006/06/16 00:15:30 1.558
--- www/errata.html 2006/07/30 17:35:57 1.559
***************
*** 75,80 ****
--- 75,93 ----
+ -
+ 004: SECURITY FIX: July 30, 2006 All architectures
+ httpd(8)
+ 's mod_rewrite has a potentially exploitable off-by-one buffer overflow.
+ The buffer overflow may result in a vulnerability which, in combination
+ with certain types of Rewrite rules in the web server configuration files,
+ could be triggered remotely. The default install is not affected by the
+ buffer overflow. CVE-2006-3747
+
+
+ A source code patch exists which remedies this problem.
+
+
-
003: SECURITY FIX: June 15, 2006 All architectures
A potential denial of service problem has been found in sendmail. A malformed MIME
***************
*** 141,147 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.558 2006/06/16 00:15:30 brad Exp $