===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata40.html,v
retrieving revision 1.44
retrieving revision 1.45
diff -c -r1.44 -r1.45
*** www/errata40.html 2014/10/02 14:34:45 1.44
--- www/errata40.html 2015/02/14 04:36:51 1.45
***************
*** 83,89 ****
! -
017: SECURITY FIX: October 10, 2007
All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
--- 83,89 ----
! -
017: SECURITY FIX: October 10, 2007
All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
***************
*** 92,98 ****
A source code patch exists which remedies this problem.
!
-
016: SECURITY FIX: October 8, 2007
All architectures
Malicious DHCP clients could cause dhcpd(8) to corrupt its stack
--- 92,98 ----
A source code patch exists which remedies this problem.
!
-
016: SECURITY FIX: October 8, 2007
All architectures
Malicious DHCP clients could cause dhcpd(8) to corrupt its stack
***************
*** 103,109 ****
A source code patch exists which remedies this problem.
!
-
015: SECURITY FIX: July 9, 2007
All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
--- 103,109 ----
A source code patch exists which remedies this problem.
!
-
015: SECURITY FIX: July 9, 2007
All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
***************
*** 111,117 ****
A source code patch exists which remedies this problem.
!
-
014: STABILITY FIX: May 9, 2007
All Architectures
A malicious client can cause a division by zero.
--- 111,117 ----
A source code patch exists which remedies this problem.
!
-
014: STABILITY FIX: May 9, 2007
All Architectures
A malicious client can cause a division by zero.
***************
*** 119,125 ****
A source code patch exists which remedies this problem.
!
-
013: STABILITY FIX: April 26, 2007
PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
--- 119,125 ----
A source code patch exists which remedies this problem.
!
-
013: STABILITY FIX: April 26, 2007
PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
***************
*** 127,133 ****
A source code patch exists which remedies this problem.
!
-
012: SECURITY FIX: April 23, 2007
All architectures
IPv6 type 0 route headers can be used to mount a DoS attack against
--- 127,133 ----
A source code patch exists which remedies this problem.
!
-
012: SECURITY FIX: April 23, 2007
All architectures
IPv6 type 0 route headers can be used to mount a DoS attack against
***************
*** 137,143 ****
A source code patch exists which remedies this problem.
!
-
011: SECURITY FIX: April 4, 2007
All architectures
Multiple vulnerabilities have been discovered in X.Org.
--- 137,143 ----
A source code patch exists which remedies this problem.
!
-
011: SECURITY FIX: April 4, 2007
All architectures
Multiple vulnerabilities have been discovered in X.Org.
***************
*** 155,161 ****
A source code patch exists which remedies this problem.
!
-
010: SECURITY FIX: March 7, 2007
All architectures
2nd revision, March 17, 2007
--- 155,161 ----
A source code patch exists which remedies this problem.
!
-
010: SECURITY FIX: March 7, 2007
All architectures
2nd revision, March 17, 2007
***************
*** 170,176 ****
A source code patch exists which remedies this problem.
!
-
009: INTEROPERABILITY FIX: February 4, 2007
All architectures
A US daylight saving time rules change takes effect in 2007.
--- 170,176 ----
A source code patch exists which remedies this problem.
!
-
009: INTEROPERABILITY FIX: February 4, 2007
All architectures
A US daylight saving time rules change takes effect in 2007.
***************
*** 179,185 ****
A source code patch exists which syncs the timezone data files with tzdata2007a.
!
-
008: RELIABILITY FIX: January 16, 2007
All architectures
Under some circumstances, processing an ICMP6 echo request would cause
--- 179,185 ----
A source code patch exists which syncs the timezone data files with tzdata2007a.
!
-
008: RELIABILITY FIX: January 16, 2007
All architectures
Under some circumstances, processing an ICMP6 echo request would cause
***************
*** 189,195 ****
A source code patch exists which remedies this problem.
!
-
007: SECURITY FIX: January 3, 2007
i386 only
Insufficient validation in
--- 189,195 ----
A source code patch exists which remedies this problem.
!
-
007: SECURITY FIX: January 3, 2007
i386 only
Insufficient validation in
***************
*** 204,210 ****
A source code patch exists which remedies this problem.
!
-
006: FTP DISTRIBUTION ERROR: December 4, 2006
All architectures
The src.tar.gz and ports.tar.gz archives
--- 204,210 ----
A source code patch exists which remedies this problem.
!
-
006: FTP DISTRIBUTION ERROR: December 4, 2006
All architectures
The src.tar.gz and ports.tar.gz archives
***************
*** 220,226 ****
!
-
005: SECURITY FIX: November 19, 2006
All architectures
The ELF
--- 220,226 ----
!
-
005: SECURITY FIX: November 19, 2006
All architectures
The ELF
***************
*** 233,239 ****
A source code patch exists which remedies this problem.
!
-
004: RELIABILITY FIX: November 7, 2006
All architectures
Due to a bug in the
--- 233,239 ----
A source code patch exists which remedies this problem.
!
-
004: RELIABILITY FIX: November 7, 2006
All architectures
Due to a bug in the
***************
*** 247,253 ****
A source code patch exists which remedies this problem.
!
-
003: SECURITY FIX: November 4, 2006
All architectures
Fix for an integer overflow in
--- 247,253 ----
A source code patch exists which remedies this problem.
!
-
003: SECURITY FIX: November 4, 2006
All architectures
Fix for an integer overflow in
***************
*** 260,266 ****
A source code patch exists which remedies this problem.
!
-
002: SECURITY FIX: November 4, 2006
All architectures
Several problems have been found in OpenSSL. While parsing certain invalid ASN.1
--- 260,266 ----
A source code patch exists which remedies this problem.
!
-
002: SECURITY FIX: November 4, 2006
All architectures
Several problems have been found in OpenSSL. While parsing certain invalid ASN.1
***************
*** 279,285 ****
A source code patch exists which remedies this problem.
!
-
001: SECURITY FIX: November 4, 2006
All architectures
httpd(8)
--- 279,285 ----
A source code patch exists which remedies this problem.
!
-
001: SECURITY FIX: November 4, 2006
All architectures
httpd(8)