=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata24.html,v retrieving revision 1.26 retrieving revision 1.27 diff -c -r1.26 -r1.27 *** www/errata24.html 2003/10/24 22:12:40 1.26 --- www/errata24.html 2003/11/21 16:55:16 1.27 *************** *** 8,13 **** --- 8,14 ---- + *************** *** 47,140 **** consult the OpenBSD FAQ.

! !

All architectures

RELIABILITY FIX
A local user can crash the system by reading a file larger than 64meg from an ext2fs partition. A source code patch exists which remedies this problem.
! !
RELIABILITY FIX
A local user can crash the system because of a bug in the vfs layer. A source code patch exists which remedies this problem.
! !
SECURITY FIX
A machine crash is possible when playing with poll(2). A source code patch exists which remedies this problem.
! !
SECURITY FIX
A machine crash is possible when playing with link(2) on FFS. A source code patch exists which remedies this problem. This is version four of the patch.
! !
SECURITY FIX
A buffer overflow existed in ping(8), which may have a security issue. A source code patch exists which remedies this problem.
! !
SECURITY FIX
A race condition in IP ipq handling could permit a remote crash. A source code patch exists which remedies this problem. It must be installed after the maxqueue patch. and the tcp decoding patch.
! !
SECURITY FIX
A race condition existed between accept(2) and select(2) which could permit an attacker to hang sockets from remote. A source code patch exists which remedies this problem.
! !
SECURITY FIX
IP fragment assembly can bog the machine excessively and cause problems. A source code patch exists which remedies this problem.
! !
FUNCTIONALITY FIX
The readv(2) and writev(2) system calls would not accept a struct iovec with an iov_len of 0. This causes a db test in perl to fail. A source code patch exists which remedies this problem.
! !
SECURITY FIX
TCP/IP RST handling was too sloppy. A source code patch exists which remedies this problem.
! !
FUNCTIONALITY FIX
During bootup, kvm_mkdb may exit with the error "kvm_mkdb: cannot allocate memory". A source code patch exists which remedies this problem.
! !
FUNCTIONALITY FIX
A problem with writing to NFS version 3 mounted filesystems from Solaris 7 hosts exists. Attempts to create files will result in a error such as "Inappropriate file type or format". A source code patch exists which remedies this problem.
! !
FUNCTIONALITY FIX
A problem with NFS version 3 mounts on big endian machines (m68k, sparc and powerpc) exists when mounting filesystems larger than 2gig. You can see evidence of the bug by running df(1) and checking for negative --- 48,139 ---- consult the OpenBSD FAQ.
+ +
All architectures
- ! RELIABILITY FIX
  A local user can crash the system by reading a file larger than 64meg from an ext2fs partition. A source code patch exists which remedies this problem.
  !
- ! RELIABILITY FIX
  A local user can crash the system because of a bug in the vfs layer. A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  A machine crash is possible when playing with poll(2). A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  A machine crash is possible when playing with link(2) on FFS. A source code patch exists which remedies this problem. This is version four of the patch.
  !
- ! SECURITY FIX
  A buffer overflow existed in ping(8), which may have a security issue. A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  A race condition in IP ipq handling could permit a remote crash. A source code patch exists which remedies this problem. It must be installed after the maxqueue patch. and the tcp decoding patch.
  !
- ! SECURITY FIX
  A race condition existed between accept(2) and select(2) which could permit an attacker to hang sockets from remote. A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  IP fragment assembly can bog the machine excessively and cause problems. A source code patch exists which remedies this problem.
  !
- ! FUNCTIONALITY FIX
  The readv(2) and writev(2) system calls would not accept a struct iovec with an iov_len of 0. This causes a db test in perl to fail. A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  TCP/IP RST handling was too sloppy. A source code patch exists which remedies this problem.
  !
- ! FUNCTIONALITY FIX
  During bootup, kvm_mkdb may exit with the error "kvm_mkdb: cannot allocate memory". A source code patch exists which remedies this problem.
  !
- ! FUNCTIONALITY FIX
  A problem with writing to NFS version 3 mounted filesystems from Solaris 7 hosts exists. Attempts to create files will result in a error such as "Inappropriate file type or format". A source code patch exists which remedies this problem.
  !
- ! FUNCTIONALITY FIX
  A problem with NFS version 3 mounts on big endian machines (m68k, sparc and powerpc) exists when mounting filesystems larger than 2gig. You can see evidence of the bug by running df(1) and checking for negative *************** *** 142,149 **** A source code patch exists which remedies this problem.
  ! !
- SECURITY FIX
  A security problem exists in the curses and ocurses libraries that affect setuid programs linked with -lcurses or -locurses. --- 141,148 ---- A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  A security problem exists in the curses and ocurses libraries that affect setuid programs linked with -lcurses or -locurses. *************** *** 153,160 **** i386 platform. Unpack it in /usr/lib.
  ! !
- FUNCTIONALITY FIX
  A workaround for an xterm problem that causes vi to not restore the correct cursor position on exit. --- 152,159 ---- i386 platform. Unpack it in /usr/lib.
  !
- ! FUNCTIONALITY FIX
  A workaround for an xterm problem that causes vi to not restore the correct cursor position on exit. *************** *** 168,206 **** big endian version.
  ! !
- FUNCTIONALITY FIX
  userdir support was accidentally left out of httpd(8). A source code patch exists which remedies this problem.
  ! !
- SECURITY FIX
  A remotely exploitable problem exists in bootpd(8). bootpd is disabled by default, but some people may actually be using it. A source code patch exists which remedies this problem, this is the second version of the patch.
  ! !
- SECURITY FIX
  A remote machine lockup problem exists in the TCP decoding code. A source code patch exists which remedies this problem.
! !
i386
- SECURITY FIX
  This is another fix for a kernel crash caused by the crashme program. A source code patch exists which remedies this problem.
  
  ! !
- FUNCTIONALITY FIX
  The kernel was using a fixed and hard-coded location for the arguments vector passed from the /boot loader. This prevented /boot from placing the boot arguments vector at any --- 167,205 ---- big endian version.
  !
- ! FUNCTIONALITY FIX
  userdir support was accidentally left out of httpd(8). A source code patch exists which remedies this problem.
  !
- ! SECURITY FIX
  A remotely exploitable problem exists in bootpd(8). bootpd is disabled by default, but some people may actually be using it. A source code patch exists which remedies this problem, this is the second version of the patch.
  !
- ! SECURITY FIX
  A remote machine lockup problem exists in the TCP decoding code. A source code patch exists which remedies this problem.
! !
i386
- ! SECURITY FIX
  This is another fix for a kernel crash caused by the crashme program. A source code patch exists which remedies this problem.
  
  !
- ! FUNCTIONALITY FIX
  The kernel was using a fixed and hard-coded location for the arguments vector passed from the /boot loader. This prevented /boot from placing the boot arguments vector at any *************** *** 211,225 **** A source code patch exists which remedies this problem.
  
  ! !
- SECURITY FIX
  i386 trace-trap handling when DDB was configured could cause a system crash. A source code patch exists which remedies this problem.
  
  ! !
- FUNCTIONALITY FIX
  i386 installboot had a sign extension bug which prevented proper bootblock initialization when the root filesystem was placed beyond 4GB. --- 210,224 ---- A source code patch exists which remedies this problem.
  
  !
- ! SECURITY FIX
  i386 trace-trap handling when DDB was configured could cause a system crash. A source code patch exists which remedies this problem.
  
  !
- ! FUNCTIONALITY FIX
  i386 installboot had a sign extension bug which prevented proper bootblock initialization when the root filesystem was placed beyond 4GB. *************** *** 229,302 ****
! !
mac68k
- No problems identified yet.
! !
sparc
- DRIVER FIX
  The sparc hme(4) and be(4) drivers work poorly on some types of SS-20 machines. This is because those machines lie, saying they support 64-bit DMA bursting. No sun4m machines support that. A source code patch exists which remedies this problem.
  ! !
- DRIVER FIX
  The sparc le(4) driver does media changes incorrectly on one type of sbus le(4) card. A source code patch exists which remedies this problem.
! !
amiga
- No problems identified yet.
! !
pmax
- No problems identified yet.
! !
arc
- No problems identified yet.
! !
alpha
- No problems identified yet.
! !
hp300
- FUNCTIONALITY FIX
  The Xhp as shipped does not have the execute permissions set. The fix is 'chmod 755 /usr/X11R6/bin/Xhp' if you have installed X.
! !
mvme68k
- No problems identified yet.
! !
powerpc
- No problems identified yet.
--- 228,300 ----

! !

mac68k

No problems identified yet.

! !

sparc

! DRIVER FIX
The sparc hme(4) and be(4) drivers work poorly on some types of SS-20 machines. This is because those machines lie, saying they support 64-bit DMA bursting. No sun4m machines support that. A source code patch exists which remedies this problem.
!
! DRIVER FIX
The sparc le(4) driver does media changes incorrectly on one type of sbus le(4) card. A source code patch exists which remedies this problem.

! !

amiga

No problems identified yet.

! !

pmax

No problems identified yet.

! !

arc

No problems identified yet.

! !

alpha

No problems identified yet.

! !

hp300

! FUNCTIONALITY FIX
The Xhp as shipped does not have the execute permissions set. The fix is 'chmod 755 /usr/X11R6/bin/Xhp' if you have installed X.

! !

mvme68k

No problems identified yet.

! !

powerpc

No problems identified yet.

*************** *** 304,311 ****

--- 302,307 ---- *************** *** 330,336 ****

www@openbsd.org !
$OpenBSD: errata24.html,v 1.26 2003/10/24 22:12:40 david Exp $ --- 326,332 ----

www@openbsd.org !
$OpenBSD: errata24.html,v 1.27 2003/11/21 16:55:16 henning Exp $

All architectures

All architectures

i386

i386

mac68k

sparc

amiga

pmax

arc

alpha

hp300

mvme68k

powerpc

mac68k

sparc

amiga

pmax

arc

alpha

hp300

mvme68k

powerpc