===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.130
retrieving revision 1.131
diff -u -r1.130 -r1.131
--- www/errata.html	1998/07/01 19:19:38	1.130
+++ www/errata.html	1998/07/02 09:03:05	1.131
@@ -27,6 +27,16 @@
 <a name=all></a>
 <li><h3><font color=#e00000>All architectures</font></h3>
 <ul>
+<a name=fdalloc></a>
+<li><font color=#009000><strong>SECURITY FIX</strong></font><br>
+Some non-allocated file descriptors have implied uses according to
+system libraries, and hence setuid and setgid processes should not
+be executed with these descriptors unallocated.  A patch which forces
+setuid and setgid processes to have some descriptors in fd slots
+0, 1, and 2 is 
+<a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.3/common/kill.patch>
+available here.</a>
+<p>
 <a name=xlib></a>
 <li><font color=#009000><strong>SECURITY FIX</strong></font><br>
 Vulnerabilities have been found in the X11, Xt, Xaw and Xmu
@@ -269,7 +279,7 @@
 <hr>
 <a href=orders.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.130 1998/07/01 19:19:38 millert Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.131 1998/07/02 09:03:05 deraadt Exp $</small>
 
 </body>
 </html>