===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.270
retrieving revision 1.271
diff -u -r1.270 -r1.271
--- www/errata.html	2000/10/03 22:56:03	1.270
+++ www/errata.html	2000/10/06 19:59:42	1.271
@@ -40,6 +40,22 @@
 <a name=all></a>
 <li><h3><font color=#e00000>All architectures</font></h3>
 <ul>
+<a name=curses></a>
+<li><font color=#009000><strong>027: SECURITY FIX: Oct 6, 2000</strong></font><br>
+libcurses permitted reading of $HOME/.termlib database files if used by
+a setuid or setgid application.  
+<br>
+<a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/026_talkd.patch>
+A source code patch exists which remedies this problem.</a>
+<p>
+<a name=talkd></a>
+<li><font color=#009000><strong>026: SECURITY FIX: Oct 6, 2000</strong></font><br>
+A format string vulnerability exists in talkd(8).  It is not clear
+yet what the impact is.
+<br>
+<a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/026_talkd.patch>
+A source code patch exists which remedies this problem.</a>
+<p>
 <a name=pw_error></a>
 <li><font color=#009000><strong>025: SECURITY FIX: Oct 3, 2000</strong></font><br>
 A format string vulnerability exists in the pw_error(3) function.  This
@@ -379,7 +395,7 @@
 
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.270 2000/10/03 22:56:03 millert Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.271 2000/10/06 19:59:42 deraadt Exp $</small>
 
 </body>
 </html>