=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata27.html,v retrieving revision 1.4 retrieving revision 1.5 diff -c -r1.4 -r1.5 *** www/errata27.html 2000/11/10 21:24:15 1.4 --- www/errata27.html 2000/11/10 21:43:35 1.5 *************** *** 47,65 ****

All architectures

036: SECURITY FIX: Nov 10, 2000
Hostile servers can force OpenSSH clients to do agent or X11 forwarding. This problem is fixed as of OpenSSH 2.3.0.
! A source code patch exists which remedies this problem.
- -
035: IMPLEMENTATION FIX: Nov 10, 2000
- In ssh(1), skey support for SSH1 protocol was broken. Some people might consider - that kind of important.
- - A source code patch exists which remedies this problem. -
033: RELIABILITY FIX: Nov 6, 2000
Invalid fields in the exec header could cause a crash.
--- 47,58 ----
All architectures
- 035: SECURITY FIX: Nov 10, 2000
  Hostile servers can force OpenSSH clients to do agent or X11 forwarding. This problem is fixed as of OpenSSH 2.3.0.
  ! A source code patch exists which remedies this problem.
- 033: RELIABILITY FIX: Nov 6, 2000
  Invalid fields in the exec header could cause a crash.
  *************** *** 473,479 **** www@openbsd.org !
  $OpenBSD: errata27.html,v 1.4 2000/11/10 21:24:15 deraadt Exp $ --- 466,472 ---- www@openbsd.org !
  $OpenBSD: errata27.html,v 1.5 2000/11/10 21:43:35 deraadt Exp $