===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata24.html,v
retrieving revision 1.26
retrieving revision 1.27
diff -c -r1.26 -r1.27
*** www/errata24.html 2003/10/24 22:12:40 1.26
--- www/errata24.html 2003/11/21 16:55:16 1.27
***************
*** 8,13 ****
--- 8,14 ----
+
***************
*** 47,140 ****
consult the OpenBSD FAQ.
!
!
!
All architectures
!
!
! - RELIABILITY FIX
A local user can crash the system by reading a file larger than 64meg
from an ext2fs partition.
A source code patch exists which remedies this problem.
!
!
- RELIABILITY FIX
A local user can crash the system because of a bug in the vfs layer.
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
A machine crash is possible when playing with poll(2).
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
A machine crash is possible when playing with link(2) on FFS.
A source code patch exists which remedies this problem. This
is version four of the patch.
!
!
- SECURITY FIX
A buffer overflow existed in ping(8), which may have a security issue.
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
A race condition in IP ipq handling could permit a remote crash.
A source code patch exists which remedies this problem.
It must be installed after the maxqueue patch.
and the tcp decoding patch.
!
!
- SECURITY FIX
A race condition existed between accept(2) and select(2) which could
permit an attacker to hang sockets from remote.
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
IP fragment assembly can bog the machine excessively and cause problems.
A source code patch exists which remedies this problem.
!
!
- FUNCTIONALITY FIX
The readv(2) and writev(2) system calls would not accept a struct iovec
with an iov_len of 0. This causes a db test in perl to fail.
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
TCP/IP RST handling was too sloppy.
A source code patch exists which remedies this problem.
!
!
- FUNCTIONALITY FIX
During bootup, kvm_mkdb may exit with the error "kvm_mkdb: cannot allocate
memory".
A source code patch exists which remedies this problem.
!
!
- FUNCTIONALITY FIX
A problem with writing to NFS version 3 mounted filesystems from Solaris 7
hosts exists. Attempts to create files will result in a error such as
"Inappropriate file type or format".
A source code patch exists which remedies this problem.
!
!
- FUNCTIONALITY FIX
A problem with NFS version 3 mounts on big endian machines (m68k, sparc
and powerpc) exists when mounting filesystems larger than 2gig. You
can see evidence of the bug by running df(1) and checking for negative
--- 48,139 ----
consult the OpenBSD FAQ.
+
+ All architectures
! -
! RELIABILITY FIX
A local user can crash the system by reading a file larger than 64meg
from an ext2fs partition.
A source code patch exists which remedies this problem.
!
-
! RELIABILITY FIX
A local user can crash the system because of a bug in the vfs layer.
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
A machine crash is possible when playing with poll(2).
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
A machine crash is possible when playing with link(2) on FFS.
A source code patch exists which remedies this problem. This
is version four of the patch.
!
-
! SECURITY FIX
A buffer overflow existed in ping(8), which may have a security issue.
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
A race condition in IP ipq handling could permit a remote crash.
A source code patch exists which remedies this problem.
It must be installed after the maxqueue patch.
and the tcp decoding patch.
!
-
! SECURITY FIX
A race condition existed between accept(2) and select(2) which could
permit an attacker to hang sockets from remote.
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
IP fragment assembly can bog the machine excessively and cause problems.
A source code patch exists which remedies this problem.
!
-
! FUNCTIONALITY FIX
The readv(2) and writev(2) system calls would not accept a struct iovec
with an iov_len of 0. This causes a db test in perl to fail.
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
TCP/IP RST handling was too sloppy.
A source code patch exists which remedies this problem.
!
-
! FUNCTIONALITY FIX
During bootup, kvm_mkdb may exit with the error "kvm_mkdb: cannot allocate
memory".
A source code patch exists which remedies this problem.
!
-
! FUNCTIONALITY FIX
A problem with writing to NFS version 3 mounted filesystems from Solaris 7
hosts exists. Attempts to create files will result in a error such as
"Inappropriate file type or format".
A source code patch exists which remedies this problem.
!
-
! FUNCTIONALITY FIX
A problem with NFS version 3 mounts on big endian machines (m68k, sparc
and powerpc) exists when mounting filesystems larger than 2gig. You
can see evidence of the bug by running df(1) and checking for negative
***************
*** 142,149 ****
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
A security problem exists in the curses and ocurses libraries that affect
setuid programs linked with -lcurses or -locurses.
--- 141,148 ----
A source code patch exists which remedies this problem.
!
-
! SECURITY FIX
A security problem exists in the curses and ocurses libraries that affect
setuid programs linked with -lcurses or -locurses.
***************
*** 153,160 ****
i386
platform. Unpack it in /usr/lib.
!
!
- FUNCTIONALITY FIX
A workaround for an xterm problem that causes vi to not
restore the correct cursor position on exit.
--- 152,159 ----
i386
platform. Unpack it in /usr/lib.
!
-
! FUNCTIONALITY FIX
A workaround for an xterm problem that causes vi to not
restore the correct cursor position on exit.
***************
*** 168,206 ****
big endian version.
!
!
- FUNCTIONALITY FIX
userdir support was accidentally left out of httpd(8).
A source code patch exists which remedies this problem.
!
!
- SECURITY FIX
A remotely exploitable problem exists in bootpd(8). bootpd is disabled
by default, but some people may actually be using it.
A source code patch exists which remedies this problem, this is the
second version of the patch.
!
!
- SECURITY FIX
A remote machine lockup problem exists in the TCP decoding code.
A source code patch exists which remedies this problem.
!
! i386
!
! i386
!
!
mac68k
-
- No problems identified yet.
!
!
sparc
!
! amiga
- No problems identified yet.
!
!
pmax
- No problems identified yet.
!
!
arc
- No problems identified yet.
!
!
alpha
- No problems identified yet.
!
!
hp300
!
! - FUNCTIONALITY FIX
The Xhp as shipped does not have the execute permissions set. The fix is
'chmod 755 /usr/X11R6/bin/Xhp' if you have installed X.
!
!
mvme68k
- No problems identified yet.
!
!
powerpc
- No problems identified yet.
--- 228,300 ----
!
!
mac68k
- No problems identified yet.
!
!
sparc
!
! amiga
- No problems identified yet.
!
!
pmax
- No problems identified yet.
!
!
arc
- No problems identified yet.
!
!
alpha
- No problems identified yet.
!
!
hp300
! -
! FUNCTIONALITY FIX
The Xhp as shipped does not have the execute permissions set. The fix is
'chmod 755 /usr/X11R6/bin/Xhp' if you have installed X.
!
!
mvme68k
- No problems identified yet.
!
!
powerpc
- No problems identified yet.
***************
*** 304,311 ****
-
-
--- 302,307 ----
***************
*** 330,336 ****
www@openbsd.org
!
$OpenBSD: errata24.html,v 1.26 2003/10/24 22:12:40 david Exp $