===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata33.html,v
retrieving revision 1.16
retrieving revision 1.17
diff -c -r1.16 -r1.17
*** www/errata33.html 2004/02/19 03:30:52 1.16
--- www/errata33.html 2004/02/26 07:33:56 1.17
***************
*** 55,62 ****
All architectures
!
! - 017: RELIABILITY FIX: February 14,
2004
Several buffer overflows exist in the code parsing
font.aliases files in XFree86. Thanks to ProPolice, these cannot be
--- 55,62 ----
All architectures
! -
! 017: RELIABILITY FIX: February 14,
2004
Several buffer overflows exist in the code parsing
font.aliases files in XFree86. Thanks to ProPolice, these cannot be
***************
*** 65,72 ****
A source code patch exists which remedies the problem.
!
!
- 016: SECURITY FIX: February 8, 2004
An IPv6 MTU handling problem exists that could be used by an attacker
to cause a denial of service attack against hosts with reachable IPv6
TCP ports.
--- 65,72 ----
A source code patch exists which remedies the problem.
!
-
! 016: SECURITY FIX: February 8, 2004
An IPv6 MTU handling problem exists that could be used by an attacker
to cause a denial of service attack against hosts with reachable IPv6
TCP ports.
***************
*** 74,81 ****
A source code patch exists which remedies the problem.
!
!
- 015: SECURITY FIX: February 5, 2004
A reference counting bug exists in the
shmat(2)
system call that could be used by an attacker to write to kernel memory
--- 74,81 ----
A source code patch exists which remedies the problem.
!
-
! 015: SECURITY FIX: February 5, 2004
A reference counting bug exists in the
shmat(2)
system call that could be used by an attacker to write to kernel memory
***************
*** 84,91 ****
A source code patch exists which remedies the problem.
!
!
- 014: SECURITY FIX: January 15, 2004
Several message handling flaws in
isakmpd(8)
have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs.
--- 84,91 ----
A source code patch exists which remedies the problem.
!
-
! 014: SECURITY FIX: January 15, 2004
Several message handling flaws in
isakmpd(8)
have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs.
***************
*** 186,194 ****
system call can allow a local user to cause a kernel panic.
A source code patch exists which remedies the problem.
-
!
- 001: SECURITY FIX: August 4, 2003
An off-by-one error exists in the C library function
realpath(3).
Since this same bug resulted in a root compromise in the wu-ftpd ftp server
--- 186,194 ----
system call can allow a local user to cause a kernel panic.
A source code patch exists which remedies the problem.
!
-
! 001: SECURITY FIX: August 4, 2003
An off-by-one error exists in the C library function
realpath(3).
Since this same bug resulted in a root compromise in the wu-ftpd ftp server
***************
*** 291,297 ****
www@openbsd.org
!
$OpenBSD: errata33.html,v 1.16 2004/02/19 03:30:52 nick Exp $