===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.442
retrieving revision 1.443
diff -u -r1.442 -r1.443
--- www/errata.html 2003/05/08 08:38:20 1.442
+++ www/errata.html 2003/08/04 16:39:29 1.443
@@ -54,7 +54,16 @@
All architectures
-- No problems identified yet.
+
+
- 001: SECURITY FIX: August 4, 2003
+An off-by-one error exists in the C library function
+realpath(3).
+Since this same bug resulted in a root compromise in the wu-ftpd ftp server
+it is possible that this bug may allow an attacker to gain escalated privileges
+on OpenBSD.
+A
+source code patch exists which remedies the problem.
+
@@ -142,7 +151,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.442 2003/05/08 08:38:20 henning Exp $
+
$OpenBSD: errata.html,v 1.443 2003/08/04 16:39:29 millert Exp $