===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.549
retrieving revision 1.550
diff -u -r1.549 -r1.550
--- www/errata.html 2006/03/08 01:40:56 1.549
+++ www/errata.html 2006/03/08 06:57:19 1.550
@@ -76,61 +76,7 @@
-
-005: SECURITY FIX: February 12, 2006 All architectures
-Josh Bressers has reported a weakness in OpenSSH caused due to the insecure use of the
-system(3)
-function in
-scp(1)
-when performing copy operations using filenames that are supplied by the user from the command line.
-This can be exploited to execute shell commands with privileges of the user running
-scp(1).
-
-
-A source code patch exists which remedies this problem.
-
-
-
-
-004: RELIABILITY FIX: January 13, 2006 i386 architecture
-Constrain
-i386_set_ioperm(2)
-so even root is blocked from accessing the ioports
-unless the machine is running at lower securelevels or with an open X11 aperture.
-
-
-A source code patch exists which remedies this problem.
-
-
-
-
-003: RELIABILITY FIX: January 13, 2006 i386 architecture
-Change the implementation of i386 W^X so that the "execute line" can move around.
-Before it was limited to being either at 512MB (below which all code normally
-lands) or at the top of the stack. Now the line can float as
-mprotect(2)
-and
-mmap(2)
-requests need it to. This is now implemented using only GDT selectors
-instead of the LDT so that it is more robust as well.
-
-
-A source code patch exists which remedies this problem.
-
-
-
-
-002: SECURITY FIX: January 5, 2006 All architectures
-Do not allow users to trick suid programs into re-opening files via /dev/fd.
-
-
-A source code patch exists which remedies this problem.
-
-
-
-
-001: SECURITY FIX: January 5, 2006 All architectures
-A buffer overflow has been found in the Perl interpreter with the sprintf function which
-may be exploitable under certain conditions.
-
-
-A source code patch exists which remedies this problem.
-
+None yet.
@@ -163,7 +109,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.549 2006/03/08 01:40:56 deraadt Exp $
+
$OpenBSD: errata.html,v 1.550 2006/03/08 06:57:19 deraadt Exp $