===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.91
retrieving revision 1.92
diff -u -r1.91 -r1.92
--- www/errata.html	1998/04/22 14:52:49	1.91
+++ www/errata.html	1998/04/22 14:55:30	1.92
@@ -24,16 +24,16 @@
 <a name=rmjob></a>
 <li><font color=#009000><strong>SECURITY FIX</strong></font><br>
 An exploitable buffer mismanagement exists in a subroutine used by
-lprm and lpd.  The problem is only localhost exploitable if you
-have lpd enabled and <strong>/etc/printcap</strong> pointing at
-a remote printer.
+lprm and lpd.  The problem is exploitable by users on a particular
+machine if there is an entry in <strong>/etc/printcap</strong> which
+points at a remote printer.
 <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/rmjob.patch>
 A patch is available which corrects this behaviour</a>.
 <p>
 <a name=uucpd></a>
 <li><font color=#009000><strong>SECURITY FIX</strong></font><br>
-A DNS-based vulnerability exists when uucpd is used.  By default this ships
-disabled in the system, but some sites may have enabled it.
+A DNS-based vulnerability exists when uucpd is used.  By default uucpd
+is not enabled in the OpenBSD releases, but some sites may have enabled it.
 <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.2/common/uucpd.patch>
 A patch is available which corrects this behaviour</a>.
 <p>
@@ -307,7 +307,7 @@
 <hr>
 <a href=orders.html><img src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata.html,v 1.91 1998/04/22 14:52:49 deraadt Exp $</small>
+<br><small>$OpenBSD: errata.html,v 1.92 1998/04/22 14:55:30 deraadt Exp $</small>
 
 </body>
 </html>