===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata33.html,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -r1.7 -r1.8
--- www/errata33.html	2003/11/21 02:34:01	1.7
+++ www/errata33.html	2003/11/21 16:55:16	1.8
@@ -8,6 +8,7 @@
 <meta name="keywords" content="openbsd,cd,errata">
 <meta name="distribution" content="global">
 <meta name="copyright" content="This document copyright 1997-2003 by OpenBSD.">
+<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
 </head>
 
 <BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E">
@@ -51,37 +52,36 @@
 consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>.
 <hr>
 
-<dl>
-<a name=all></a>
-<li><h3><font color="#e00000">All architectures</font></h3>
+<a name="all"></a>
+<h3><font color="#e00000">All architectures</font></h3>
 <ul>
-<a name=sem></a>
-<li><font color="#009000"><strong>013: RELIABILITY FIX: November 20, 2003</strong></font><br>
+<li><a name="sem"></a>
+<font color="#009000"><strong>013: RELIABILITY FIX: November 20, 2003</strong></font><br>
 An improper bounds check makes it possible for a local user to cause a crash
 by passing the
-<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semctl&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semctl(2)</a> and
-<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semop(2)</a> functions
+<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semctl&amp;apropos=0&amp;sektion=2&amp;manpath=OpenBSD+Current&amp;arch=i386&amp;format=html">semctl(2)</a> and
+<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&amp;apropos=0&amp;sektion=2&amp;manpath=OpenBSD+Current&amp;arch=i386&amp;format=html">semop(2)</a> functions
 certain arguments.
 <br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/013_sem.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=uvm></a>
-<li><font color="#009000"><strong>012: RELIABILITY FIX: November 20, 2003</strong></font><br>
+<li><a name="uvm"></a>
+<font color="#009000"><strong>012: RELIABILITY FIX: November 20, 2003</strong></font><br>
 It is possible for a local user to cause a crash via
-<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&apropos=0&sektion=3&manpath=OpenBSD+Current&arch=i386&format=html">sysctl(3)</a> with certain arguments.<br>
+<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&amp;apropos=0&amp;sektion=3&amp;manpath=OpenBSD+Current&amp;arch=i386&amp;format=html">sysctl(3)</a> with certain arguments.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/012_uvm.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=exec></a>
-<li><font color="#009000"><strong>010: RELIABILITY FIX: November 4, 2003</strong></font><br>
+<li><a name="exec"></a>
+<font color="#009000"><strong>010: RELIABILITY FIX: November 4, 2003</strong></font><br>
 It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header.
 <br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/010_exec.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=httpd></a>
-<li><font color="#009000"><strong>009: RELIABILITY FIX: October 29, 2003</strong></font><br>
+<li><a name="httpd"></a>
+<font color="#009000"><strong>009: RELIABILITY FIX: October 29, 2003</strong></font><br>
 A user with write permission to <tt>httpd.conf</tt> or a <tt>.htaccess</tt>
 file can crash
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&amp;sektion=8">httpd(8)</a>
@@ -91,15 +91,15 @@
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/009_httpd.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=arp></a>
-<li><font color="#009000"><strong>008: RELIABILITY FIX: October 1, 2003</strong></font><br>
+<li><a name="arp"></a>
+<font color="#009000"><strong>008: RELIABILITY FIX: October 1, 2003</strong></font><br>
 It is possible for a local user to cause a system panic by flooding it with spoofed ARP
 requests.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/008_arp.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=asn1></a>
-<li><font color="#009000"><strong>007: SECURITY FIX: October 1, 2003</strong></font><br>
+<li><a name="asn1"></a>
+<font color="#009000"><strong>007: SECURITY FIX: October 1, 2003</strong></font><br>
 The use of certain ASN.1 encodings or malformed public keys may allow an
 attacker to mount a denial of service attack against applications linked with
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&amp;sektion=3">ssl(3)</a>.
@@ -107,16 +107,16 @@
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/007_asn1.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=pfnorm></a>
-<li><font color="#009000"><strong>006: SECURITY FIX: September 24, 2003</strong></font><br>
+<li><a name="pfnorm"></a>
+<font color="#009000"><strong>006: SECURITY FIX: September 24, 2003</strong></font><br>
 Three cases of potential access to freed memory have been found in 
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&amp;sektion=4">pf(4)</a>.
 At least one of them could be used to panic pf with active scrub rules remotely.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/006_pfnorm.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
-<a name=sendmail></a>
-<li><font color="#009000"><strong>005: SECURITY FIX: September 17, 2003</strong></font><br>
+<li><a name="sendmail"></a>
+<font color="#009000"><strong>005: SECURITY FIX: September 17, 2003</strong></font><br>
 A buffer overflow in the address parsing in
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendmail&amp;sektion=8">sendmail(8)</a>
 may allow an attacker to gain root privileges.<br>
@@ -125,8 +125,8 @@
 NOTE: this is the <em>second</em> revision of the patch that fixes an additional
 problem.
 <p>
-<a name=sshbuffer></a>
-<li><font color="#009000"><strong>004: SECURITY FIX: September 16, 2003</strong></font><br>
+<li><a name="sshbuffer"></a>
+<font color="#009000"><strong>004: SECURITY FIX: September 16, 2003</strong></font><br>
 All versions of OpenSSH's sshd prior to 3.7 contain a buffer management error.
 It is unclear whether or not this bug is exploitable.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/004_sshbuffer.patch">A
@@ -134,21 +134,21 @@
 NOTE: this is the <em>second</em> revision of the patch that fixes an additional
 problem.
 <p>
-<a name=sysvsem></a>
-<li><font color="#009000"><strong>003: SECURITY FIX: September 10, 2003</strong></font><br>
+<li><a name="sysvsem"></a>
+<font color="#009000"><strong>003: SECURITY FIX: September 10, 2003</strong></font><br>
 Root may be able to reduce the security level by taking advantage of
 an integer overflow when the semaphore limits are made very large.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/003_sysvsem.patch">
 A source code patch exists which remedies the problem</a>.
 <p>
-<a name=semget></a>
-<li><font color="#009000"><strong>002: RELIABILITY FIX: August 20, 2003</strong></font><br>
+<li><a name="semget"></a>
+<font color="#009000"><strong>002: RELIABILITY FIX: August 20, 2003</strong></font><br>
 An improper bounds check in the
 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semget&amp;sektion=2">semget(2)</a>
 system call can allow a local user to cause a kernel panic.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/002_semget.patch">
 A source code patch exists which remedies the problem</a>.
-<a name=realpath></a>
+<a name="realpath"></a>
 <p>
 <li><font color="#009000"><strong>001: SECURITY FIX: August 4, 2003</strong></font><br>
 An off-by-one error exists in the C library function
@@ -161,75 +161,73 @@
 <p>
 </ul>
 <p>
-<a name=i386></a>
-<li><h3><font color="#e00000">i386</font></h3>
+<a name="i386"></a>
+<h3><font color="#e00000">i386</font></h3>
 <ul>
-<a name=ibcs2></a>
-<li><font color="#009000"><strong>011: SECURITY FIX: November 17, 2003</strong></font><br>
+<li><a name="ibcs2"></a>
+<font color="#009000"><strong>011: SECURITY FIX: November 17, 2003</strong></font><br>
 It is possible for a local user to execute arbitrary code resulting in escalation of
 privileges due to a stack overrun in
-<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compat_ibcs2&sektion=8&apr
-opos=0&manpath=OpenBSD+Current&arch=i386">compat_ibcs2(8)</a>.<br>
+<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compat_ibcs2&amp;sektion=8&amp;apropos=0&amp;manpath=OpenBSD+Current&amp;arch=i386">compat_ibcs2(8)</a>.<br>
 <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/i386/011_ibcs2.patch">
 A source code patch exists which remedies the problem</a>.<br>
 <p>
 </ul>
 <p>
-<a name=alpha></a>
-<li><h3><font color="#e00000">alpha</font></h3>
+<a name="alpha"></a>
+<h3><font color="#e00000">alpha</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=mac68k></a>
-<li><h3><font color="#e00000">mac68k</font></h3>
+<a name="mac68k"></a>
+<h3><font color="#e00000">mac68k</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=sparc></a>
-<li><h3><font color="#e00000">sparc</font></h3>
+<a name="sparc"></a>
+<h3><font color="#e00000">sparc</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=sparc64></a>
-<li><h3><font color="#e00000">sparc64</font></h3>
+<a name="sparc64"></a>
+<h3><font color="#e00000">sparc64</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=hppa></a>
-<li><h3><font color="#e00000">hppa</font></h3>
+<a name="hppa"></a>
+<h3><font color="#e00000">hppa</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=hp300></a>
-<li><h3><font color="#e00000">hp300</font></h3>
+<a name="hp300"></a>
+<h3><font color="#e00000">hp300</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=mvme68k></a>
-<li><h3><font color="#e00000">mvme68k</font></h3>
+<a name="mvme68k"></a>
+<h3><font color="#e00000">mvme68k</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=macppc></a>
-<li><h3><font color="#e00000">macppc</font></h3>
+<a name="macppc"></a>
+<h3><font color="#e00000">macppc</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 <p>
-<a name=vax></a>
-<li><h3><font color="#e00000">vax</font></h3>
+<a name="vax"></a>
+<h3><font color="#e00000">vax</font></h3>
 <ul>
 <li>No problems identified yet.
 </ul>
 
-</dl>
 <br>
 
 <hr>
@@ -255,7 +253,7 @@
 <hr>
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> 
 <a href="mailto:www@openbsd.org">www@openbsd.org</a>
-<br><small>$OpenBSD: errata33.html,v 1.7 2003/11/21 02:34:01 millert Exp $</small>
+<br><small>$OpenBSD: errata33.html,v 1.8 2003/11/21 16:55:16 henning Exp $</small>
 
 </body>
 </html>