===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata29.html,v
retrieving revision 1.20
retrieving revision 1.21
diff -u -r1.20 -r1.21
--- www/errata29.html 2002/04/26 04:56:37 1.20
+++ www/errata29.html 2002/05/08 23:02:53 1.21
@@ -48,6 +48,13 @@
All architectures
+
+- 026: SECURITY FIX: May 8, 2002
+A race condition exists where an attacker could fill the file descriptor
+table and defeat the kernel's protection of fd slots 0, 1, and 2 for a
+setuid or setgid process.
+A source code patch exists which remedies the problem.
+
- 025: SECURITY FIX: April 25, 2002
A bug in sudo(8) may allow an attacker to corrupt the heap by specifying a custom prompt.
@@ -375,7 +382,7 @@
www@openbsd.org
-
$OpenBSD: errata29.html,v 1.20 2002/04/26 04:56:37 millert Exp $
+
$OpenBSD: errata29.html,v 1.21 2002/05/08 23:02:53 millert Exp $