===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.396
retrieving revision 1.397
diff -u -r1.396 -r1.397
--- www/errata.html	2002/06/22 20:27:09	1.396
+++ www/errata.html	2002/06/25 02:33:32	1.397
@@ -49,6 +49,16 @@
 <a name=all></a>
 <li><h3><font color=#e00000>All architectures</font></h3>
 <ul>
+<a name=sshd></a>
+<li><font color=#009000><strong>006: SECURITY FIX: June 24, 2002</strong></font><br>
+An (as yet) undisclosed bug exists in OpenSSH which a patch is not forthcoming
+for yet -- no patch exists yet!<br>
+However, upgrading to <a href="http://www.openssh.com/openbsd.html">OpenSSH 3.3</a>
+with the <strong>UsePrivilegeSeparation</strong> option enabled will block this
+problem.<br>
+All users are advised to update immediately, and keep an eye out for
+a upcoming OpenSSH 3.4 release on Monday containing a real fix.
+<p>
 <a name=httpd></a>
 <li><font color=#009000><strong>005: SECURITY FIX: June 19, 2002</strong></font><br>
 A buffer overflow can occur during the interpretation of chunked
@@ -170,7 +180,7 @@
 
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.396 2002/06/22 20:27:09 deraadt Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.397 2002/06/25 02:33:32 deraadt Exp $</small>
 
 </body>
 </html>