===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata29.html,v
retrieving revision 1.18
retrieving revision 1.19
diff -c -r1.18 -r1.19
*** www/errata29.html 2002/04/19 09:51:42 1.18
--- www/errata29.html 2002/04/23 20:52:52 1.19
***************
*** 48,53 ****
--- 48,63 ----
All architectures
+
+ - 024: SECURITY FIX: April 22, 2002
+ A local user can gain super-user privileges due to a buffer overflow
+ in sshd(8)
+ if AFS has been configured on the system or if
+ KerberosTgtPassing or AFSTokenPassing has been enabled
+ in the sshd_config file. Ticket and token passing is not enabled
+ by default.
+ A source code patch exists which remedies the problem.
+
- 023: SECURITY FIX: April 11, 2002
mail(1)
***************
*** 360,366 ****
www@openbsd.org
!
$OpenBSD: errata29.html,v 1.18 2002/04/19 09:51:42 horacio Exp $