===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.87
retrieving revision 1.88
diff -u -r1.87 -r1.88
--- www/errata.html	1998/03/31 23:24:26	1.87
+++ www/errata.html	1998/03/31 23:26:27	1.88
@@ -24,7 +24,7 @@
 <a name=named></a>
 <li><font color=#009000><strong>SECURITY FIX</strong></font><br>
 A vulnerability exists when (and only when) /etc/named.conf has the
-<strong>fake-iquery</strong> option enabled.  
+<strong>fake-iquery</strong> option enabled.
 <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/named.patch>
 A patch is available which corrects this behaviour</a>.
 <p>
@@ -32,7 +32,8 @@
 <li><font color=#009000><strong>SECURITY FIX</strong></font><br>
 A vulnerability exists in ping(8); if the -R option is used to record
 routes, an attacker can spoof a reply packet that will overflow inside
-ping.
+ping.  Preliminary investigation makes it look the worst attack
+possible is to make ping crash, but one never knows...
 <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/ping.patch>
 A patch is available which corrects this behaviour</a>.
 <p>
@@ -290,7 +291,7 @@
 <hr>
 <a href=orders.html><img src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.87 1998/03/31 23:24:26 deraadt Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.88 1998/03/31 23:26:27 deraadt Exp $</small>
 
 </body>
 </html>