===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata38.html,v
retrieving revision 1.61
retrieving revision 1.62
diff -u -r1.61 -r1.62
--- www/errata38.html 2016/08/15 02:22:06 1.61
+++ www/errata38.html 2016/10/16 19:11:29 1.62
@@ -70,7 +70,7 @@
@@ -99,7 +99,7 @@
CVE-2006-4924,
CVE-2006-5051
-
+
A source code patch exists which remedies this problem.
@@ -112,7 +112,7 @@
Chris Evans. This could be exploited for DoS, limited kmem reads or local
privilege escalation.
-
+
A source code patch exists which remedies this problem.
@@ -130,7 +130,7 @@
CVE-2006-4343,
CVE-2006-2940
-
+
A source code patch exists which remedies this problem.
@@ -143,7 +143,7 @@
style attacks.
CVE-2006-3918
-
+
A source code patch exists which remedies this problem.
@@ -155,7 +155,7 @@
valid PKCS#1 v1.5 signature.
CVE-2006-4339
-
+
A source code patch exists which remedies this problem.
@@ -172,7 +172,7 @@
CVE-2006-4095
CVE-2006-4096
-
+
A source code patch exists which remedies this problem.
@@ -185,7 +185,7 @@
connection causing the kernel to panic.
CVE-2006-4304
-
+
A source code patch exists which remedies this problem.
@@ -200,7 +200,7 @@
An attacker could reinject sniffed IPsec packets, which will be accepted without checking the
replay counter.
-
+
A source code patch exists which remedies this problem.
@@ -210,7 +210,7 @@
It is possible to cause the kernel to panic when more than the default number of
sempahores have been allocated.
-
+
A source code patch exists which remedies this problem.
@@ -224,7 +224,7 @@
to exit by sending a DHCPDISCOVER packet with a 32-byte client identifier option.
CVE-2006-3122
-
+
A source code patch exists which remedies this problem.
@@ -235,7 +235,7 @@
with really long header lines could trigger a use-after-free bug causing
sendmail to crash.
-
+
A source code patch exists which remedies this problem.
@@ -249,7 +249,7 @@
could be triggered remotely. The default install is not affected by the
buffer overflow. CVE-2006-3747
-
+
A source code patch exists which remedies this problem.
@@ -263,7 +263,7 @@
delivered. However, mail messages in the queue may not be reattempted if a
malformed MIME message exists.
-
+
A source code patch exists which remedies this problem.
@@ -275,7 +275,7 @@
Clients authorized to connect to the X server are able to crash it and to execute
malicious code within the X server.
-
+
A source code patch exists which remedies this problem.
@@ -286,7 +286,7 @@
asynchronous signals. A remote attacker may be able to execute arbitrary code with the
privileges of the user running sendmail, typically root.
-
+
A source code patch exists which remedies this problem.
@@ -301,7 +301,7 @@
This can be exploited to execute shell commands with privileges of the user running
scp(1).
-
+
A source code patch exists which remedies this problem.
@@ -313,7 +313,7 @@
so even root is blocked from accessing the ioports
unless the machine is running at lower securelevels or with an open X11 aperture.
-
+
A source code patch exists which remedies this problem.
@@ -329,7 +329,7 @@
requests need it to. This is now implemented using only GDT selectors
instead of the LDT so that it is more robust as well.
-
+
A source code patch exists which remedies this problem.
@@ -338,7 +338,7 @@
All architectures
Do not allow users to trick suid programs into re-opening files via /dev/fd.
-
+
A source code patch exists which remedies this problem.
@@ -348,7 +348,7 @@
A buffer overflow has been found in the Perl interpreter with the sprintf function which
may be exploitable under certain conditions.
-
+
A source code patch exists which remedies this problem.