[BACK]Return to errata30.html CVS log [TXT][DIR] Up to [local] / www

Diff for /www/errata30.html between version 1.5 and 1.6

version 1.5, 2002/04/25 16:13:37 version 1.6, 2002/04/25 16:39:30
Line 51 
Line 51 
 <ul>  <ul>
 <a name=sudo2></a>  <a name=sudo2></a>
 <li><font color=#009000><strong>020: SECURITY FIX: April 25, 2002</strong></font><br>  <li><font color=#009000><strong>020: SECURITY FIX: April 25, 2002</strong></font><br>
 A bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo(8)</a> may allow an attacker to corrupt the heap by specifying a custom prompt.  A bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo(8)</a> may allow an attacker to corrupt the heap by specifying a custom prompt.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/020_sudo.patch">A source code patch exists which remedies the problem</a>.  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/020_sudo.patch">A source code patch exists which remedies the problem</a>.
 <p>  <p>
 <a name=sshafs></a>  <a name=sshafs></a>
Legend:
Removed from v.1.5  
changed lines
  Added in v.1.6