===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata28.html,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -r1.9 -r1.10
--- www/errata28.html	2001/06/10 18:11:31	1.9
+++ www/errata28.html	2001/06/15 16:45:26	1.10
@@ -46,6 +46,13 @@
 <a name=all></a>
 <li><h3><font color=#e00000>All architectures</font></h3>
 <ul>
+<a name=kernexec></a>
+<li><font color=#009000><strong>030: SECURITY FIX: June 15, 2001</strong></font>
+<br>
+A race condition exists in the kernel <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=execve&sektion=2&format=html">execve(2)</a> implementation that opens a small window of vulnerability for a non-privileged user to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ptrace&sektion=2&format=html">ptrace(2)</a> attach to a suid/sgid process.
+<br>
+<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/030_kernexec.patch">A source code patch exists which remedies the problem</a>.
+<p>
 <a name=fts></a>
 <li><font color=#009000><strong>029: SECURITY FIX: May 30, 2001</strong></font><br>
 Programs using the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fts&sektion=3&format=html">fts(3)</a>
@@ -396,7 +403,7 @@
 
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
-<br><small>$OpenBSD: errata28.html,v 1.9 2001/06/10 18:11:31 horacio Exp $</small>
+<br><small>$OpenBSD: errata28.html,v 1.10 2001/06/15 16:45:26 aaron Exp $</small>
 
 </body>
 </html>