=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata40.html,v retrieving revision 1.44 retrieving revision 1.45 diff -c -r1.44 -r1.45 *** www/errata40.html 2014/10/02 14:34:45 1.44 --- www/errata40.html 2015/02/14 04:36:51 1.45 *************** *** 83,89 ****

017: SECURITY FIX: October 10, 2007 All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow. --- 83,89 ----
- 017: SECURITY FIX: October 10, 2007 All architectures
  The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow. *************** *** 92,98 **** A source code patch exists which remedies this problem.
  !
- 016: SECURITY FIX: October 8, 2007 All architectures
  Malicious DHCP clients could cause dhcpd(8) to corrupt its stack
  --- 92,98 ---- A source code patch exists which remedies this problem.
  !
- 016: SECURITY FIX: October 8, 2007 All architectures
  Malicious DHCP clients could cause dhcpd(8) to corrupt its stack
  *************** *** 103,109 **** A source code patch exists which remedies this problem.
  !
- 015: SECURITY FIX: July 9, 2007 All Architectures
  Fix possible heap overflow in file(1), aka CVE-2007-1536.
  --- 103,109 ---- A source code patch exists which remedies this problem.
  !
- 015: SECURITY FIX: July 9, 2007 All Architectures
  Fix possible heap overflow in file(1), aka CVE-2007-1536.
  *************** *** 111,117 **** A source code patch exists which remedies this problem.
  !
- 014: STABILITY FIX: May 9, 2007 All Architectures
  A malicious client can cause a division by zero.
  --- 111,117 ---- A source code patch exists which remedies this problem.
  !
- 014: STABILITY FIX: May 9, 2007 All Architectures
  A malicious client can cause a division by zero.
  *************** *** 119,125 **** A source code patch exists which remedies this problem.
  !
- 013: STABILITY FIX: April 26, 2007 PowerPC
  An unhandled AltiVec assist exception can cause a kernel panic.
  --- 119,125 ---- A source code patch exists which remedies this problem.
  !
- 013: STABILITY FIX: April 26, 2007 PowerPC
  An unhandled AltiVec assist exception can cause a kernel panic.
  *************** *** 127,133 **** A source code patch exists which remedies this problem.
  !
- 012: SECURITY FIX: April 23, 2007 All architectures
  IPv6 type 0 route headers can be used to mount a DoS attack against --- 127,133 ---- A source code patch exists which remedies this problem.
  !
- 012: SECURITY FIX: April 23, 2007 All architectures
  IPv6 type 0 route headers can be used to mount a DoS attack against *************** *** 137,143 **** A source code patch exists which remedies this problem.
  !
- 011: SECURITY FIX: April 4, 2007 All architectures
  Multiple vulnerabilities have been discovered in X.Org.
  --- 137,143 ---- A source code patch exists which remedies this problem.
  !
- 011: SECURITY FIX: April 4, 2007 All architectures
  Multiple vulnerabilities have been discovered in X.Org.
  *************** *** 155,161 **** A source code patch exists which remedies this problem.
  !
- 010: SECURITY FIX: March 7, 2007 All architectures
  2nd revision, March 17, 2007
  --- 155,161 ---- A source code patch exists which remedies this problem.
  !
- 010: SECURITY FIX: March 7, 2007 All architectures
  2nd revision, March 17, 2007
  *************** *** 170,176 **** A source code patch exists which remedies this problem.
  !
- 009: INTEROPERABILITY FIX: February 4, 2007 All architectures
  A US daylight saving time rules change takes effect in 2007. --- 170,176 ---- A source code patch exists which remedies this problem.
  !
- 009: INTEROPERABILITY FIX: February 4, 2007 All architectures
  A US daylight saving time rules change takes effect in 2007. *************** *** 179,185 **** A source code patch exists which syncs the timezone data files with tzdata2007a.
  
  !
- 008: RELIABILITY FIX: January 16, 2007 All architectures
  Under some circumstances, processing an ICMP6 echo request would cause --- 179,185 ---- A source code patch exists which syncs the timezone data files with tzdata2007a.
  
  !
- 008: RELIABILITY FIX: January 16, 2007 All architectures
  Under some circumstances, processing an ICMP6 echo request would cause *************** *** 189,195 **** A source code patch exists which remedies this problem.
  !
- 007: SECURITY FIX: January 3, 2007 i386 only
  Insufficient validation in --- 189,195 ---- A source code patch exists which remedies this problem.
  !
- 007: SECURITY FIX: January 3, 2007 i386 only
  Insufficient validation in *************** *** 204,210 **** A source code patch exists which remedies this problem.
  !
- 006: FTP DISTRIBUTION ERROR: December 4, 2006 All architectures
  The src.tar.gz and ports.tar.gz archives --- 204,210 ---- A source code patch exists which remedies this problem.
  !
- 006: FTP DISTRIBUTION ERROR: December 4, 2006 All architectures
  The src.tar.gz and ports.tar.gz archives *************** *** 220,226 ****
  
  !
- 005: SECURITY FIX: November 19, 2006 All architectures
  The ELF --- 220,226 ----
  
  !
- 005: SECURITY FIX: November 19, 2006 All architectures
  The ELF *************** *** 233,239 **** A source code patch exists which remedies this problem.
  !
- 004: RELIABILITY FIX: November 7, 2006 All architectures
  Due to a bug in the --- 233,239 ---- A source code patch exists which remedies this problem.
  !
- 004: RELIABILITY FIX: November 7, 2006 All architectures
  Due to a bug in the *************** *** 247,253 **** A source code patch exists which remedies this problem.
  !
- 003: SECURITY FIX: November 4, 2006 All architectures
  Fix for an integer overflow in --- 247,253 ---- A source code patch exists which remedies this problem.
  !
- 003: SECURITY FIX: November 4, 2006 All architectures
  Fix for an integer overflow in *************** *** 260,266 **** A source code patch exists which remedies this problem.
  !
- 002: SECURITY FIX: November 4, 2006 All architectures
  Several problems have been found in OpenSSL. While parsing certain invalid ASN.1 --- 260,266 ---- A source code patch exists which remedies this problem.
  !
- 002: SECURITY FIX: November 4, 2006 All architectures
  Several problems have been found in OpenSSL. While parsing certain invalid ASN.1 *************** *** 279,285 **** A source code patch exists which remedies this problem.
  !
- 001: SECURITY FIX: November 4, 2006 All architectures
  httpd(8) --- 279,285 ---- A source code patch exists which remedies this problem.
  !
- 001: SECURITY FIX: November 4, 2006 All architectures
  httpd(8)