=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v retrieving revision 1.91 retrieving revision 1.92 diff -c -r1.91 -r1.92 *** www/errata.html 1998/04/22 14:52:49 1.91 --- www/errata.html 1998/04/22 14:55:30 1.92 *************** *** 24,39 ****

SECURITY FIX
An exploitable buffer mismanagement exists in a subroutine used by ! lprm and lpd. The problem is only localhost exploitable if you ! have lpd enabled and /etc/printcap pointing at ! a remote printer. A patch is available which corrects this behaviour.

SECURITY FIX
! A DNS-based vulnerability exists when uucpd is used. By default this ships ! disabled in the system, but some sites may have enabled it. A patch is available which corrects this behaviour.

--- 24,39 ----

SECURITY FIX
An exploitable buffer mismanagement exists in a subroutine used by ! lprm and lpd. The problem is exploitable by users on a particular ! machine if there is an entry in /etc/printcap which ! points at a remote printer. A patch is available which corrects this behaviour.

SECURITY FIX
! A DNS-based vulnerability exists when uucpd is used. By default uucpd ! is not enabled in the OpenBSD releases, but some sites may have enabled it. A patch is available which corrects this behaviour.

*************** *** 307,313 ****

www@openbsd.org !
$OpenBSD: errata.html,v 1.91 1998/04/22 14:52:49 deraadt Exp $ --- 307,313 ----

www@openbsd.org !
$OpenBSD: errata.html,v 1.92 1998/04/22 14:55:30 deraadt Exp $