===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.388
retrieving revision 1.389
diff -u -r1.388 -r1.389
--- www/errata.html 2002/04/23 20:52:51 1.388
+++ www/errata.html 2002/04/25 16:13:37 1.389
@@ -49,6 +49,11 @@
All architectures
+
+- 002: SECURITY FIX: April 25, 2002
+A bug in sudo(8) may allow an attacker to corrupt the heap by specifying a custom prompt.
+A source code patch exists which remedies the problem.
+
- 001: SECURITY FIX: April 22, 2002
A local user can gain super-user privileges due to a buffer overflow
@@ -141,7 +146,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.388 2002/04/23 20:52:51 markus Exp $
+
$OpenBSD: errata.html,v 1.389 2002/04/25 16:13:37 millert Exp $