===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata30.html,v
retrieving revision 1.6
retrieving revision 1.7
diff -c -r1.6 -r1.7
*** www/errata30.html 2002/04/25 16:39:30 1.6
--- www/errata30.html 2002/05/08 23:02:53 1.7
***************
*** 49,54 ****
--- 49,61 ----
All architectures
+
+ - 021: SECURITY FIX: May 8, 2002
+ A race condition exists where an attacker could fill the file descriptor
+ table and defeat the kernel's protection of fd slots 0, 1, and 2 for a
+ setuid or setgid process.
+ A source code patch exists which remedies the problem.
+
- 020: SECURITY FIX: April 25, 2002
A bug in sudo(8) may allow an attacker to corrupt the heap by specifying a custom prompt.
***************
*** 320,326 ****
www@openbsd.org
!
$OpenBSD: errata30.html,v 1.6 2002/04/25 16:39:30 millert Exp $