===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.447
retrieving revision 1.448
diff -u -r1.447 -r1.448
--- www/errata.html	2003/08/23 07:24:29	1.447
+++ www/errata.html	2003/09/10 23:29:56	1.448
@@ -54,7 +54,14 @@
 <a name=all></a>
 <li><h3><font color="#e00000">All architectures</font></h3>
 <ul>
-<a name=shmget></a>
+<a name=sysvsem></a>
+<li><font color="#009000"><strong>003: SECURITY FIX: September 10, 2003</strong></font><br>
+Root may be able to reduce the security level by taking advantage of
+an integer overflow when the semaphore limits are made very large.<br>
+<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/003_sysvsem.patch">A
+source code patch exists which remedies the problem</a>.
+<p>
+<a name=semget></a>
 <li><font color="#009000"><strong>002: RELIABILITY FIX: August 20, 2003</strong></font><br>
 An improper bounds check in the
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semget&amp;sektion=2">semget(2)</a>
@@ -159,7 +166,7 @@
 <hr>
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href="mailto:www@openbsd.org">www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.447 2003/08/23 07:24:29 jufi Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.448 2003/09/10 23:29:56 millert Exp $</small>
 
 </body>
 </html>