===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.77
retrieving revision 1.78
diff -c -r1.77 -r1.78
*** www/errata.html	1998/02/19 13:49:00	1.77
--- www/errata.html	1998/02/19 21:35:44	1.78
***************
*** 70,76 ****
  opened read-only on a device, to later on be mmap(2)'d read-write, and
  then modified.  This does not result in a security hole by itself, but
  it does violate the safety semantics which securelevels are supposed to
! provide.
  <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/vm_mmap.patch>
  A kernel patch is available which corrects this behaviour</a>.
  <p>
--- 70,77 ----
  opened read-only on a device, to later on be mmap(2)'d read-write, and
  then modified.  This does not result in a security hole by itself, but
  it does violate the safety semantics which securelevels are supposed to
! provide.  If a user manages to gain kmem group permissions, using this
! problem they can then gain root trivially.
  <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/vm_mmap.patch>
  A kernel patch is available which corrects this behaviour</a>.
  <p>
***************
*** 252,258 ****
  <hr>
  <a href=orders.html><img src=back.gif border=0 alt=OpenBSD></a> 
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
! <br><small>$OpenBSD: errata.html,v 1.77 1998/02/19 13:49:00 deraadt Exp $</small>
  
  </body>
  </html>
--- 253,259 ----
  <hr>
  <a href=orders.html><img src=back.gif border=0 alt=OpenBSD></a> 
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
! <br><small>$OpenBSD: errata.html,v 1.78 1998/02/19 21:35:44 deraadt Exp $</small>
  
  </body>
  </html>