===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata40.html,v
retrieving revision 1.58
retrieving revision 1.59
diff -u -r1.58 -r1.59
--- www/errata40.html 2016/08/15 02:22:06 1.58
+++ www/errata40.html 2016/10/16 19:11:29 1.59
@@ -70,7 +70,7 @@
@@ -92,7 +92,7 @@
All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
-
+
A source code patch exists which remedies this problem.
@@ -103,7 +103,7 @@
A DHCP client that claimed to require a maximum message size less than
the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
-
+
A source code patch exists which remedies this problem.
@@ -111,7 +111,7 @@
015: SECURITY FIX: July 9, 2007
All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
-
+
A source code patch exists which remedies this problem.
@@ -119,7 +119,7 @@
014: STABILITY FIX: May 9, 2007
All Architectures
A malicious client can cause a division by zero.
-
+
A source code patch exists which remedies this problem.
@@ -127,7 +127,7 @@
013: STABILITY FIX: April 26, 2007
PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
-
+
A source code patch exists which remedies this problem.
@@ -137,7 +137,7 @@
IPv6 type 0 route headers can be used to mount a DoS attack against
hosts and networks. This is a design flaw in IPv6 and not a bug in
OpenBSD.
-
+
A source code patch exists which remedies this problem.
@@ -155,7 +155,7 @@
CVE-2007-1352,
CVE-2007-1667.
-
+
A source code patch exists which remedies this problem.
@@ -170,7 +170,7 @@
can be installed.
Use "block in inet6" in /etc/pf.conf
-
+
A source code patch exists which remedies this problem.
@@ -179,7 +179,7 @@
All architectures
A US daylight saving time rules change takes effect in 2007.
-
+
A source code patch exists which syncs the timezone data files with tzdata2007a.
@@ -189,7 +189,7 @@
Under some circumstances, processing an ICMP6 echo request would cause
the kernel to enter an infinite loop.
-
+
A source code patch exists which remedies this problem.
@@ -204,7 +204,7 @@
The PCIAGP option is present by default on i386
kernels only.
-
+
A source code patch exists which remedies this problem.
@@ -217,9 +217,9 @@
them from a mirror.
The archives have been corrected. The correct MD5 of
-
+
ports.tar.gz is eff352b4382a7fb7ffce1e8b37e9eb56, and for
-
+
src.tar.gz it is b8d7a0dc6f3d27a5377a23d69c40688e.
@@ -233,7 +233,7 @@
problem in cases we have not found yet. This patch applies to all ELF-based
systems (m68k, m88k, and vax are a.out-based systems).
-
+
A source code patch exists which remedies this problem.
@@ -247,7 +247,7 @@
volumes will not be properly marked as being clean and fsck will be run for the subsequent
boot up.
-
+
A source code patch exists which remedies this problem.
@@ -260,7 +260,7 @@
Chris Evans. This could be exploited for DoS, limited kmem reads or local
privilege escalation.
-
+
A source code patch exists which remedies this problem.
@@ -279,7 +279,7 @@
CVE-2006-2940
-
+
A source code patch exists which remedies this problem.
@@ -293,7 +293,7 @@
CVE-2006-3918
-
+
A source code patch exists which remedies this problem.