===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata23.html,v
retrieving revision 1.66
retrieving revision 1.67
diff -c -r1.66 -r1.67
*** www/errata23.html 2014/10/02 14:34:45 1.66
--- www/errata23.html 2015/02/14 04:36:51 1.67
***************
*** 81,87 ****
! -
SECURITY FIX
All architectures
A remotely exploitable problem exists in bootpd(8). bootpd is disabled
--- 81,87 ----
! -
SECURITY FIX
All architectures
A remotely exploitable problem exists in bootpd(8). bootpd is disabled
***************
*** 90,103 ****
A source code patch exists which remedies this problem.
This is the second version of the patch.
!
-
SECURITY FIX
All architectures
A remote machine lockup problem exists in the TCP decoding code.
A source code patch exists which remedies this problem.
!
-
HARDWARE SUPPORT
All architectures
Some ATAPI cdroms which do not support the full mandatory command set,
--- 90,103 ----
A source code patch exists which remedies this problem.
This is the second version of the patch.
!
-
SECURITY FIX
All architectures
A remote machine lockup problem exists in the TCP decoding code.
A source code patch exists which remedies this problem.
!
-
HARDWARE SUPPORT
All architectures
Some ATAPI cdroms which do not support the full mandatory command set,
***************
*** 106,112 ****
available here.
!
-
SECURITY FIX
All architectures
Chpass(1) has a file descriptor leak which allows an
--- 106,112 ----
available here.
!
-
SECURITY FIX
All architectures
Chpass(1) has a file descriptor leak which allows an
***************
*** 114,120 ****
A source code patch exists which remedies this problem.
!
-
RELIABILITY FIX
All architectures
Calling readv(2) with iov_len < 0 or > INT_MAX would result in a
--- 114,120 ----
A source code patch exists which remedies this problem.
!
-
RELIABILITY FIX
All architectures
Calling readv(2) with iov_len < 0 or > INT_MAX would result in a
***************
*** 122,142 ****
A source code patch exists which remedies this problem.
!
-
SECURITY FIX
All architectures
Inetd had a file descriptor leak. A patch is
available here.
!
-
BUG FIX
All architectures
As shipped, unionfs had some serious problems.
A patch is available to solve this.
!
-
SECURITY FIX
All architectures
Some non-allocated file descriptors have implied uses according to
--- 122,142 ----
A source code patch exists which remedies this problem.
!
-
SECURITY FIX
All architectures
Inetd had a file descriptor leak. A patch is
available here.
!
-
BUG FIX
All architectures
As shipped, unionfs had some serious problems.
A patch is available to solve this.
!
-
SECURITY FIX
All architectures
Some non-allocated file descriptors have implied uses according to
***************
*** 147,153 ****
available here.
!
-
SECURITY FIX
All architectures
A benign looking buffer overflow in the resolver routines was re-introduced
--- 147,153 ----
available here.
!
-
SECURITY FIX
All architectures
A benign looking buffer overflow in the resolver routines was re-introduced
***************
*** 156,162 ****
available here.
!
-
SECURITY FIX
All architectures
Vulnerabilities have been found in the X11, Xt, Xaw and Xmu
--- 156,162 ----
available here.
!
-
SECURITY FIX
All architectures
Vulnerabilities have been found in the X11, Xt, Xaw and Xmu
***************
*** 172,178 ****
The 2nd source patch for these problems, specifically adapted to the
OpenBSD 2.3 X11 tree, is available now.
!
-
SECURITY FIX
All architectures
The kill(2) system call previously would permit a large set of signals to
--- 172,178 ----
The 2nd source patch for these problems, specifically adapted to the
OpenBSD 2.3 X11 tree, is available now.
!
-
SECURITY FIX
All architectures
The kill(2) system call previously would permit a large set of signals to
***************
*** 183,189 ****
The fourth revision of a source code patch which solves the problem is
available.
!
-
SECURITY FIX
All architectures
A possible new security problem exists if you rely on securelevels and
--- 183,189 ----
The fourth revision of a source code patch which solves the problem is
available.
!
-
SECURITY FIX
All architectures
A possible new security problem exists if you rely on securelevels and
***************
*** 194,200 ****
A source code patch exists which remedies this problem.
!
-
SECURITY FIX
All architectures
If IPSEC communication is attempted by starting photurisd(8) (which is
--- 194,200 ----
A source code patch exists which remedies this problem.
!
-
SECURITY FIX
All architectures
If IPSEC communication is attempted by starting photurisd(8) (which is
***************
*** 203,210 ****
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
All architectures
As stated in CERT advisory VB-98.04, there are buffer
overrun problems in xterm related to the input-Method,
--- 203,210 ----
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
All architectures
As stated in CERT advisory VB-98.04, there are buffer
overrun problems in xterm related to the input-Method,
***************
*** 234,240 ****
and
arc.
!
-
RELIABILITY FIX
The pctr(4) driver has bugs that permit any user to crash the machine,
if the CPU is not an Intel CPU. This problem has been properly fixed
--- 234,240 ----
and
arc.
!
-
RELIABILITY FIX
The pctr(4) driver has bugs that permit any user to crash the machine,
if the CPU is not an Intel CPU. This problem has been properly fixed
***************
*** 254,261 ****
- SHA1 (ghostscript-5.10.tgz) = bd9374fa547ac0078d5207463d3b0a19d80d213c
!
!
- RELIABILITY FIX
The pcvt(4) console driver has a bug that can cause some keyboard
controllers to lock up when a key is pressed that toggles the status
of a keyboard LED (scroll lock, caps lock, etc). The problem is
--- 254,261 ----
- SHA1 (ghostscript-5.10.tgz) = bd9374fa547ac0078d5207463d3b0a19d80d213c
!
! RELIABILITY FIX
The pcvt(4) console driver has a bug that can cause some keyboard
controllers to lock up when a key is pressed that toggles the status
of a keyboard LED (scroll lock, caps lock, etc). The problem is