===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata27.html,v
retrieving revision 1.15
retrieving revision 1.16
diff -u -r1.15 -r1.16
--- www/errata27.html	2001/03/19 16:38:22	1.15
+++ www/errata27.html	2001/03/22 10:43:35	1.16
@@ -48,12 +48,14 @@
 <ul>
 <a name=readline></a>
 <li><font color=#009000><strong>040: SECURITY FIX: Mar 18, 2001</strong></font><br>
-The readline library shipped with OpenBSD allows history files creation with    
-a permissive umask.  This can lead to the leakage of sensitive information
-in applications that use passwords and the like during user interaction
-(one such application is mysql).  Additionally, if the HOME environment
-variable is not set, the current working directory is used; this patch
-disables the history file if HOME is not set.<br>
+The readline library shipped with OpenBSD allows history files creation
+with a permissive
+<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=umask&sektion=2">umask(2)</a>.
+This can lead to the leakage of sensitive information in applications
+that use passwords and the like during user interaction (one such
+application is mysql).  Additionally, if the HOME environment variable
+is not set, the current working directory is used; this patch disables
+the history file if HOME is not set.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/040_readline.patch
 ">A source code patch exists which remedies the problem.</a><br>
 <p>
@@ -502,7 +504,7 @@
 
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata27.html,v 1.15 2001/03/19 16:38:22 jason Exp $</small>
+<br><small>$OpenBSD: errata27.html,v 1.16 2001/03/22 10:43:35 horacio Exp $</small>
 
 </body>
 </html>