===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.468
retrieving revision 1.469
diff -u -r1.468 -r1.469
--- www/errata.html 2003/11/21 13:09:32 1.468
+++ www/errata.html 2004/01/14 01:34:50 1.469
@@ -55,7 +55,21 @@
All architectures
--
+
-
+
+009: SECURITY FIX: January 13, 2004
+Several message handling flaws in
+isakmpd(8)
+have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs. The patch also
+includes a reliability fix for a filedescriptor leak that causes problems when a crypto card is
+installed.
+
+
+A source code patch exists which remedies these problems.
+
+
+
+
008: RELIABILITY FIX: November 20, 2003
An improper bounds check makes it possible for a local user to cause a crash
by passing the
@@ -218,7 +232,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.468 2003/11/21 13:09:32 henning Exp $
+
$OpenBSD: errata.html,v 1.469 2004/01/14 01:34:50 brad Exp $