+Due to buffer overflows in +telnet(1) +, a malicious server or man-in-the-middle attack could allow execution of +arbitrary code with the privileges of the user invoking +telnet(1) +. +
+ +A source code patch exists which remedies this problem.
+
+ +
+Bugs in the +tcp(4) +stack can lead to memory exhaustion or processing of TCP segments with +invalid SACK options and cause a system crash. +
+ +A source code patch exists which remedies this problem.
+
+ +
A bug in the @@ -480,7 +505,7 @@
www@openbsd.org
-$OpenBSD: errata35.html,v 1.17 2005/03/17 17:25:20 brad Exp $ +
$OpenBSD: errata35.html,v 1.18 2005/03/30 17:18:51 brad Exp $