www/errata34.html - diff - 1.48

Return to errata34.html CVS log

Up to [local] / www

Diff for /www/errata34.html between version 1.47 and 1.48

version 1.47, 2010/03/08 21:53:37

version 1.48, 2010/07/08 19:00:07

Line 54

Line 54

<br>

<br>

<hr>

<hr>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4.tar.gz">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4.tar.gz">

You can also fetch a tar.gz file containing all the following patches</a>.

You can also fetch a tar.gz file containing all the following patches</a>.

This file is updated once a day.

This file is updated once a day.

Line 78

Line 78

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&apropos=0&sektion=4&manpath=OpenBSD+Current&format=html">ipsec(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec&apropos=0&sektion=4&manpath=OpenBSD+Current&format=html">ipsec(4)</a>

credentials on a socket.

credentials on a socket.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/035_pfkey.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/035_pfkey.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="lynx"></a>

<li><a name="lynx"></a>

Line 91

Line 91

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lynx&apropos=0&sektion=1&manpath=OpenBSD+Current&arch=i386&format=html">lynx(1)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lynx&apropos=0&sektion=1&manpath=OpenBSD+Current&arch=i386&format=html">lynx(1)</a>

to exhaust memory and then crash when parsing such pages.

to exhaust memory and then crash when parsing such pages.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/034_lynx.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/034_lynx.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="pppd"></a>

<li><a name="pppd"></a>

Line 100

Line 100

contains a bug that allows an attacker to crash his own connection, but it cannot

contains a bug that allows an attacker to crash his own connection, but it cannot

be used to deny service to other users.

be used to deny service to other users.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/033_pppd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/033_pppd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="bind"></a>

<li><a name="bind"></a>

Line 109

Line 109

cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and

cases where IPv6 connectivity is non-existent. This results in unnecessary timeouts and

thus slow DNS queries.

thus slow DNS queries.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/032_bind.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/032_bind.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="radius"></a>

<li><a name="radius"></a>

Line 120

Line 120

This could allow an attacker to spoof a reply granting access to the

This could allow an attacker to spoof a reply granting access to the

attacker. Note that OpenBSD does not ship with radius authentication enabled.

attacker. Note that OpenBSD does not ship with radius authentication enabled.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/031_radius.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/031_radius.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="xpm"></a>

<li><a name="xpm"></a>

Line 133

Line 133

Some of these would be exploitable when parsing malicious image files in

Some of these would be exploitable when parsing malicious image files in

an application that handles XPM images, if they could escape ProPolice.

an application that handles XPM images, if they could escape ProPolice.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/030_xpm.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/030_xpm.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="httpd4"></a>

<li><a name="httpd4"></a>

Line 144

Line 144

This would require enabling dbm for mod_rewrite and making use of a malicious

This would require enabling dbm for mod_rewrite and making use of a malicious

dbm file.

dbm file.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/029_httpd4.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/029_httpd4.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

Line 156

Line 156

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bridge&apropos=0&sektion=4&manpath=OpenBSD+Current&arch=i386&format=html">bridge(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bridge&apropos=0&sektion=4&manpath=OpenBSD+Current&arch=i386&format=html">bridge(4)</a>

with IPsec processing enabled can be crashed remotely by a single ICMP echo traversing the bridge.

with IPsec processing enabled can be crashed remotely by a single ICMP echo traversing the bridge.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/028_bridge.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/028_bridge.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="icmp"></a>

<li><a name="icmp"></a>

Line 166

Line 166

<br>

<br>

<a href="http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html">http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html</a>

<a href="http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html">http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html</a>

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/027_icmp.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/027_icmp.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="rnd"></a>

<li><a name="rnd"></a>

Line 175

Line 175

encountered in an environment using CARP on a VLAN interface. This issue initially

encountered in an environment using CARP on a VLAN interface. This issue initially

manifested itself as a FPU related crash on boot up.

manifested itself as a FPU related crash on boot up.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/026_rnd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/026_rnd.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="httpd3"></a>

<li><a name="httpd3"></a>

Line 188

Line 188

<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0488">CAN-2004-0488</a>,

<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0488">CAN-2004-0488</a>,

<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492">CAN-2004-0492</a>.

<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492">CAN-2004-0492</a>.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/025_httpd3.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/025_httpd3.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="isakmpd3"></a>

<li><a name="isakmpd3"></a>

Line 200

Line 200

is still vulnerable to unauthorized SA deletion. An attacker can delete IPsec

is still vulnerable to unauthorized SA deletion. An attacker can delete IPsec

tunnels at will.

tunnels at will.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/024_isakmpd3.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/024_isakmpd3.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="cvs3"></a>

<li><a name="cvs3"></a>

Line 210

Line 210

server that allow an attacker to crash the server or possibly execute arbitrary

server that allow an attacker to crash the server or possibly execute arbitrary

code with the same privileges as the CVS server program.

code with the same privileges as the CVS server program.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/023_cvs3.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/023_cvs3.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="kerberos"></a>

<li><a name="kerberos"></a>

Line 226

Line 226

Heimdal's announcement</a>.

Heimdal's announcement</a>.

<br>

<br>

<a

<a

href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/022_kerberos.patch">

href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/022_kerberos.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="cvs2"></a>

<li><a name="cvs2"></a>

Line 238

Line 238

malformed requests, enabling these clients to run arbitrary code

malformed requests, enabling these clients to run arbitrary code

with the same privileges as the CVS server program.

with the same privileges as the CVS server program.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/021_cvs2.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/021_cvs2.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="procfs"></a>

<li><a name="procfs"></a>

Line 246

Line 246

2004</strong></font><br>

2004</strong></font><br>

Check for integer overflow in procfs. Use of procfs is not recommended.

Check for integer overflow in procfs. Use of procfs is not recommended.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/020_procfs.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/020_procfs.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="tcp2"></a>

<li><a name="tcp2"></a>

Line 254

Line 254

2004</strong></font><br>

2004</strong></font><br>

Reply to in-window SYN with a rate-limited ACK.

Reply to in-window SYN with a rate-limited ACK.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/019_tcp2.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/019_tcp2.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="gdt"></a>

<li><a name="gdt"></a>

Line 264

Line 264

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=gdt&apropos=0&sektion=4&manpath=OpenBSD+Current&arch=i386&format=html">gdt(4)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=gdt&apropos=0&sektion=4&manpath=OpenBSD+Current&arch=i386&format=html">gdt(4)</a>

controllers will lock up.

controllers will lock up.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/018_gdt.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/018_gdt.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="cvs"></a>

<li><a name="cvs"></a>

Line 277

Line 277

the client and allowing clients to check out files outside the CVS

the client and allowing clients to check out files outside the CVS

repository.

repository.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/017_cvs.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/017_cvs.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="openssl"></a>

<li><a name="openssl"></a>

Line 288

Line 288

A remote attacker can use the bug to cause an OpenSSL application to crash;

A remote attacker can use the bug to cause an OpenSSL application to crash;

this may lead to a denial of service.

this may lead to a denial of service.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/016_openssl.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/016_openssl.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="isakmpd2"></a>

<li><a name="isakmpd2"></a>

Line 300

Line 300

cause isakmpd to crash or to loop endlessly. This patch fixes these problems

cause isakmpd to crash or to loop endlessly. This patch fixes these problems

and removes some memory leaks.

and removes some memory leaks.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/015_isakmpd2.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/015_isakmpd2.patch">

A source code patch exists which remedies this problem</a>.<br>

A source code patch exists which remedies this problem</a>.<br>

<p>

<p>

<li><a name="httpd2"></a>

<li><a name="httpd2"></a>

Line 311

Line 311

access module, using IP addresses without a netmask on big endian 64-bit

access module, using IP addresses without a netmask on big endian 64-bit

platforms causes the rules to fail to match. This only affects sparc64.

platforms causes the rules to fail to match. This only affects sparc64.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/014_httpd2.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/014_httpd2.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="tcp"></a>

<li><a name="tcp"></a>

Line 322

Line 322

send out-of-order TCP segments and trick the system into using all

send out-of-order TCP segments and trick the system into using all

available memory buffers.

available memory buffers.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/013_tcp.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/013_tcp.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="font"></a>

<li><a name="font"></a>

Line 332

Line 332

font.aliases files in XFree86. Thanks to ProPolice, these cannot be

font.aliases files in XFree86. Thanks to ProPolice, these cannot be

exploited to gain privileges, but they can cause the X server to abort.

exploited to gain privileges, but they can cause the X server to abort.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/012_font.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/012_font.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="ip6"></a>

<li><a name="ip6"></a>

Line 341

Line 341

to cause a denial of service attack against hosts with reachable IPv6

to cause a denial of service attack against hosts with reachable IPv6

TCP ports.

TCP ports.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/011_ip6.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/011_ip6.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="sysvshm"></a>

<li><a name="sysvshm"></a>

Line 351

Line 351

system call that could be used by an attacker to write to kernel memory

system call that could be used by an attacker to write to kernel memory

under certain circumstances.

under certain circumstances.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/010_sysvshm.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/010_sysvshm.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="isakmpd"></a>

<li><a name="isakmpd"></a>

Line 362

Line 362

includes a reliability fix for a filedescriptor leak that causes problems when a crypto card is

includes a reliability fix for a filedescriptor leak that causes problems when a crypto card is

installed.

installed.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/009_isakmpd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/009_isakmpd.patch">

A source code patch exists which remedies these problems</a>.<br>

A source code patch exists which remedies these problems</a>.<br>

<p>

<p>

<li><a name="sem"></a>

<li><a name="sem"></a>

Line 373

Line 373

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semop(2)</a> functions

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semop(2)</a> functions

certain arguments.

certain arguments.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/008_sem.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/008_sem.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="uvm"></a>

<li><a name="uvm"></a>

Line 381

Line 381

It is possible for a local user to cause a crash via

It is possible for a local user to cause a crash via

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&apropos=0&sektion=3&manpath=OpenBSD+Current&arch=i386&format=html">sysctl(3)</a> with certain arguments.

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&apropos=0&sektion=3&manpath=OpenBSD+Current&arch=i386&format=html">sysctl(3)</a> with certain arguments.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/007_uvm.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/007_uvm.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="exec"></a>

<li><a name="exec"></a>

<font color="#009000"><strong>005: RELIABILITY FIX: November 4, 2003</strong></font><br>

<font color="#009000"><strong>005: RELIABILITY FIX: November 4, 2003</strong></font><br>

It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header.

It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="httpd"></a>

<li><a name="httpd"></a>

Line 399

Line 399

or potentially run arbitrary code as the user <tt>www</tt> (although it

or potentially run arbitrary code as the user <tt>www</tt> (although it

is believed that ProPolice will prevent code execution).

is believed that ProPolice will prevent code execution).

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/004_httpd.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/004_httpd.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="arp"></a>

<li><a name="arp"></a>

<font color="#009000"><strong>003: RELIABILITY FIX: November 1, 2003</strong></font><br>

<font color="#009000"><strong>003: RELIABILITY FIX: November 1, 2003</strong></font><br>

It is possible for a local user to cause a system panic by flooding it with spoofed ARP

It is possible for a local user to cause a system panic by flooding it with spoofed ARP

requests.<br>

requests.<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/003_arp.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/003_arp.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="asn1"></a>

<li><a name="asn1"></a>

Line 415

Line 415

attacker to mount a denial of service attack against applications linked with

attacker to mount a denial of service attack against applications linked with

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&sektion=3">ssl(3)</a>.

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&sektion=3">ssl(3)</a>.

This does not affect OpenSSH.<br>

This does not affect OpenSSH.<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/002_asn1.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/002_asn1.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

<li><a name="cd_booklet"></a>

<li><a name="cd_booklet"></a>

Line 423

Line 423

The CD insert documentation has an incorrect example for package installation.<br>

The CD insert documentation has an incorrect example for package installation.<br>

Where it is written:<p>

Where it is written:<p>

<strong>          

<strong>          

# pkg_add ftp://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386</strong><p>

# pkg_add http://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386</strong><p>

It should instead read:<p>

It should instead read:<p>

<strong>          

<strong>          

# pkg_add ftp://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386/</strong><p>

# pkg_add http://ftp.openbsd.org/pub/OpenBSD/3.4/packages/i386/</strong><p>

The extra <strong>/</strong> at the end is important. We do not make

The extra <strong>/</strong> at the end is important. We do not make

patch files available for things printed on paper.

patch files available for things printed on paper.

<p>

<p>

Line 444

Line 444

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">sysctl(8)</a>

<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">sysctl(8)</a>

for this to happen.

for this to happen.

<br>

<br>

<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/i386/006_ibcs2.patch">

<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.4/i386/006_ibcs2.patch">

A source code patch exists which remedies the problem</a>.<br>

A source code patch exists which remedies the problem</a>.<br>

<p>

<p>

</ul>

</ul>