===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata28.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -c -r1.2 -r1.3
*** www/errata28.html 2001/04/25 14:10:53 1.2
--- www/errata28.html 2001/05/30 04:04:54 1.3
***************
*** 47,52 ****
--- 47,61 ----
All architectures
+
+ - 028: SECURITY FIX: May 29, 2001
+ The signal handlers in sendmail(8) contain code that is unsafe in the
+ context of a signal handler. This leads to potentially serious
+ race conditions. At the moment this is a theoretical attack only
+ and can only be exploited on the local host (if at all).
+ A source code patch exists which remedies the problem by updating sendmail to version 8.11.4.
+
- 027: SECURITY FIX: Apr 23, 2001
IPF has a serious problem with fragment cacheing, the bug is triggered if you use the ipf(5) syntax "keep state".
***************
*** 378,384 ****
www@openbsd.org
!
$OpenBSD: errata28.html,v 1.2 2001/04/25 14:10:53 horacio Exp $