=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata28.html,v retrieving revision 1.10 retrieving revision 1.11 diff -c -r1.10 -r1.11 *** www/errata28.html 2001/06/15 16:45:26 1.10 --- www/errata28.html 2001/06/15 16:50:34 1.11 *************** *** 49,55 ****

030: SECURITY FIX: June 15, 2001
! A race condition exists in the kernel execve(2) implementation that opens a small window of vulnerability for a non-privileged user to ptrace(2) attach to a suid/sgid process.
A source code patch exists which remedies the problem.

--- 49,55 ----

030: SECURITY FIX: June 15, 2001
! A race condition exists in the kernel execve(2) implementation that opens a small window of vulnerability for a non-privileged user to ptrace(2) attach or queue up arbitrary signals to a suid/sgid process.
A source code patch exists which remedies the problem.

*************** *** 403,409 **** www@openbsd.org !
$OpenBSD: errata28.html,v 1.10 2001/06/15 16:45:26 aaron Exp $ --- 403,409 ---- www@openbsd.org !
$OpenBSD: errata28.html,v 1.11 2001/06/15 16:50:34 aaron Exp $