===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.91
retrieving revision 1.92
diff -u -r1.91 -r1.92
--- www/errata.html 1998/04/22 14:52:49 1.91
+++ www/errata.html 1998/04/22 14:55:30 1.92
@@ -24,16 +24,16 @@
SECURITY FIX
An exploitable buffer mismanagement exists in a subroutine used by
-lprm and lpd. The problem is only localhost exploitable if you
-have lpd enabled and /etc/printcap pointing at
-a remote printer.
+lprm and lpd. The problem is exploitable by users on a particular
+machine if there is an entry in /etc/printcap which
+points at a remote printer.
A patch is available which corrects this behaviour.
SECURITY FIX
-A DNS-based vulnerability exists when uucpd is used. By default this ships
-disabled in the system, but some sites may have enabled it.
+A DNS-based vulnerability exists when uucpd is used. By default uucpd
+is not enabled in the OpenBSD releases, but some sites may have enabled it.
A patch is available which corrects this behaviour.
@@ -307,7 +307,7 @@
www@openbsd.org
-
$OpenBSD: errata.html,v 1.91 1998/04/22 14:52:49 deraadt Exp $
+
$OpenBSD: errata.html,v 1.92 1998/04/22 14:55:30 deraadt Exp $