===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata33.html,v
retrieving revision 1.16
retrieving revision 1.17
diff -c -r1.16 -r1.17
*** www/errata33.html	2004/02/19 03:30:52	1.16
--- www/errata33.html	2004/02/26 07:33:56	1.17
***************
*** 55,62 ****
  <a name="all"></a>
  <h3><font color="#e00000">All architectures</font></h3>
  <ul>
! <a name="font"></a>
! <li><font color="#009000"><strong>017: RELIABILITY FIX: February 14,
  2004</strong></font><br>
  Several buffer overflows exist in the code parsing
  font.aliases files in XFree86. Thanks to ProPolice, these cannot be
--- 55,62 ----
  <a name="all"></a>
  <h3><font color="#e00000">All architectures</font></h3>
  <ul>
! <li><a name="font"></a>
! <font color="#009000"><strong>017: RELIABILITY FIX: February 14,
  2004</strong></font><br>
  Several buffer overflows exist in the code parsing
  font.aliases files in XFree86. Thanks to ProPolice, these cannot be
***************
*** 65,72 ****
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/017_font.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <a name="ip6"></a>
! <li><font color="#009000"><strong>016: SECURITY FIX: February 8, 2004</strong></font><br>
  An IPv6 MTU handling problem exists that could be used by an attacker
  to cause a denial of service attack against hosts with reachable IPv6
  TCP ports.
--- 65,72 ----
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/017_font.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <li><a name="ip6"></a>
! <font color="#009000"><strong>016: SECURITY FIX: February 8, 2004</strong></font><br>
  An IPv6 MTU handling problem exists that could be used by an attacker
  to cause a denial of service attack against hosts with reachable IPv6
  TCP ports.
***************
*** 74,81 ****
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/016_ip6.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <a name="sysvshm"></a>
! <li><font color="#009000"><strong>015: SECURITY FIX: February 5, 2004</strong></font><br>                    
  A reference counting bug exists in the
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=shmat&amp;apropos=0&amp;sektion=2&amp;manpath=OpenBSD+Current&amp;format=html">shmat(2)</a>
  system call that could be used by an attacker to write to kernel memory
--- 74,81 ----
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/016_ip6.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <li><a name="sysvshm"></a>
! <font color="#009000"><strong>015: SECURITY FIX: February 5, 2004</strong></font><br>                    
  A reference counting bug exists in the
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=shmat&amp;apropos=0&amp;sektion=2&amp;manpath=OpenBSD+Current&amp;format=html">shmat(2)</a>
  system call that could be used by an attacker to write to kernel memory
***************
*** 84,91 ****
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/015_sysvshm.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <a name="isakmpd"></a>
! <li><font color="#009000"><strong>014: SECURITY FIX: January 15, 2004</strong></font><br>
  Several message handling flaws in
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;apropos=0&amp;sektion=8&amp;manpath=OpenBSD+Current&amp;arch=i386&amp;format=html">isakmpd(8)</a>
  have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs.
--- 84,91 ----
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/015_sysvshm.patch">
  A source code patch exists which remedies the problem</a>.<br>
  <p>
! <li><a name="isakmpd"></a>
! <font color="#009000"><strong>014: SECURITY FIX: January 15, 2004</strong></font><br>
  Several message handling flaws in
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&amp;apropos=0&amp;sektion=8&amp;manpath=OpenBSD+Current&amp;arch=i386&amp;format=html">isakmpd(8)</a>
  have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs.
***************
*** 186,194 ****
  system call can allow a local user to cause a kernel panic.<br>
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/002_semget.patch">
  A source code patch exists which remedies the problem</a>.
- <a name="realpath"></a>
  <p>
! <li><font color="#009000"><strong>001: SECURITY FIX: August 4, 2003</strong></font><br>
  An off-by-one error exists in the C library function
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=realpath&amp;sektion=3">realpath(3)</a>.
  Since this same bug resulted in a root compromise in the wu-ftpd ftp server
--- 186,194 ----
  system call can allow a local user to cause a kernel panic.<br>
  <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/002_semget.patch">
  A source code patch exists which remedies the problem</a>.
  <p>
! <li><a name="realpath"></a>
! <font color="#009000"><strong>001: SECURITY FIX: August 4, 2003</strong></font><br>
  An off-by-one error exists in the C library function
  <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=realpath&amp;sektion=3">realpath(3)</a>.
  Since this same bug resulted in a root compromise in the wu-ftpd ftp server
***************
*** 291,297 ****
  <hr>
  <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
  <a href="mailto:www@openbsd.org">www@openbsd.org</a>
! <br><small>$OpenBSD: errata33.html,v 1.16 2004/02/19 03:30:52 nick Exp $</small>
  
  </body>
  </html>
--- 291,297 ----
  <hr>
  <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
  <a href="mailto:www@openbsd.org">www@openbsd.org</a>
! <br><small>$OpenBSD: errata33.html,v 1.17 2004/02/26 07:33:56 david Exp $</small>
  
  </body>
  </html>