===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata28.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- www/errata28.html 2001/04/25 14:10:53 1.2
+++ www/errata28.html 2001/05/30 04:04:54 1.3
@@ -47,6 +47,15 @@
All architectures
+
+- 028: SECURITY FIX: May 29, 2001
+The signal handlers in sendmail(8) contain code that is unsafe in the
+context of a signal handler. This leads to potentially serious
+race conditions. At the moment this is a theoretical attack only
+and can only be exploited on the local host (if at all).
+A source code patch exists which remedies the problem by updating sendmail to version 8.11.4.
+
- 027: SECURITY FIX: Apr 23, 2001
IPF has a serious problem with fragment cacheing, the bug is triggered if you use the ipf(5) syntax "keep state".
@@ -378,7 +387,7 @@
www@openbsd.org
-
$OpenBSD: errata28.html,v 1.2 2001/04/25 14:10:53 horacio Exp $
+
$OpenBSD: errata28.html,v 1.3 2001/05/30 04:04:54 millert Exp $