===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.77
retrieving revision 1.78
diff -u -r1.77 -r1.78
--- www/errata.html	1998/02/19 13:49:00	1.77
+++ www/errata.html	1998/02/19 21:35:44	1.78
@@ -70,7 +70,8 @@
 opened read-only on a device, to later on be mmap(2)'d read-write, and
 then modified.  This does not result in a security hole by itself, but
 it does violate the safety semantics which securelevels are supposed to
-provide.
+provide.  If a user manages to gain kmem group permissions, using this
+problem they can then gain root trivially.
 <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/vm_mmap.patch>
 A kernel patch is available which corrects this behaviour</a>.
 <p>
@@ -252,7 +253,7 @@
 <hr>
 <a href=orders.html><img src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.77 1998/02/19 13:49:00 deraadt Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.78 1998/02/19 21:35:44 deraadt Exp $</small>
 
 </body>
 </html>