===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.421
retrieving revision 1.422
diff -u -r1.421 -r1.422
--- www/errata.html 2002/11/05 15:30:43 1.421
+++ www/errata.html 2002/11/06 23:37:17 1.422
@@ -53,6 +53,34 @@
All architectures
+
+- 004: RELIABILITY FIX: November 6, 2002
+A logic error in the
+pool
+kernel memory allocator could cause memory corruption in low-memory situations,
+causing the system to crash.
+A
+source code patch exists which remedies the problem.
+
+
+
- 003: SECURITY FIX: November 6, 2002
+An attacker can bypass the restrictions imposed by sendmail's restricted shell,
+smrsh(8),
+and execute arbitrary commands with the privileges of his own account.
+A
+source code patch exists which remedies the problem.
+
+
+
- 002: RELIABILITY FIX: November 6, 2002
+Network
+bridges
+running
+pf
+with scrubbing enabled could cause mbuf corruption,
+causing the system to crash.
+A
+source code patch exists which remedies the problem.
+
- 001: SECURITY FIX: October 21, 2002
A buffer overflow can occur in the
@@ -146,7 +174,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.421 2002/11/05 15:30:43 miod Exp $
+
$OpenBSD: errata.html,v 1.422 2002/11/06 23:37:17 miod Exp $