+Due to buffer overflows in +telnet(1) +, a malicious server or man-in-the-middle attack could allow execution of +arbitrary code with the privileges of the user invoking +telnet(1) +. +
+ +A source code patch exists which remedies this problem.
+
+ +
+Bugs in the +tcp(4) +stack can lead to memory exhaustion or processing of TCP segments with +invalid SACK options and cause a system crash. +
+ +A source code patch exists which remedies this problem.
+
+
More stringent checking should be done in the @@ -232,7 +256,7 @@
www@openbsd.org
-$OpenBSD: errata.html,v 1.528 2005/03/17 01:30:03 brad Exp $ +
$OpenBSD: errata.html,v 1.529 2005/03/30 17:18:51 brad Exp $