=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata40.html,v retrieving revision 1.58 retrieving revision 1.59 diff -u -r1.58 -r1.59 --- www/errata40.html 2016/08/15 02:22:06 1.58 +++ www/errata40.html 2016/10/16 19:11:29 1.59 @@ -70,7 +70,7 @@
- + You can also fetch a tar.gz file containing all the following patches. This file is updated once a day.

@@ -92,7 +92,7 @@   All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
- + A source code patch exists which remedies this problem.

@@ -103,7 +103,7 @@ A DHCP client that claimed to require a maximum message size less than the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
- + A source code patch exists which remedies this problem.

@@ -111,7 +111,7 @@ 015: SECURITY FIX: July 9, 2007   All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
- + A source code patch exists which remedies this problem.

@@ -119,7 +119,7 @@ 014: STABILITY FIX: May 9, 2007   All Architectures
A malicious client can cause a division by zero.
- + A source code patch exists which remedies this problem.

@@ -127,7 +127,7 @@ 013: STABILITY FIX: April 26, 2007   PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
- + A source code patch exists which remedies this problem.

@@ -137,7 +137,7 @@ IPv6 type 0 route headers can be used to mount a DoS attack against hosts and networks. This is a design flaw in IPv6 and not a bug in OpenBSD.
- + A source code patch exists which remedies this problem.

@@ -155,7 +155,7 @@ CVE-2007-1352, CVE-2007-1667.
- + A source code patch exists which remedies this problem.

@@ -170,7 +170,7 @@ can be installed.
Use "block in inet6" in /etc/pf.conf
- + A source code patch exists which remedies this problem.

@@ -179,7 +179,7 @@   All architectures
A US daylight saving time rules change takes effect in 2007.
- + A source code patch exists which syncs the timezone data files with tzdata2007a.

@@ -189,7 +189,7 @@ Under some circumstances, processing an ICMP6 echo request would cause the kernel to enter an infinite loop.
- + A source code patch exists which remedies this problem.

@@ -204,7 +204,7 @@ The PCIAGP option is present by default on i386 kernels only.
- + A source code patch exists which remedies this problem.

@@ -217,9 +217,9 @@ them from a mirror.
The archives have been corrected. The correct MD5 of - + ports.tar.gz is eff352b4382a7fb7ffce1e8b37e9eb56, and for - + src.tar.gz it is b8d7a0dc6f3d27a5377a23d69c40688e.

@@ -233,7 +233,7 @@ problem in cases we have not found yet. This patch applies to all ELF-based systems (m68k, m88k, and vax are a.out-based systems).
- + A source code patch exists which remedies this problem.

@@ -247,7 +247,7 @@ volumes will not be properly marked as being clean and fsck will be run for the subsequent boot up.
- + A source code patch exists which remedies this problem.

@@ -260,7 +260,7 @@ Chris Evans. This could be exploited for DoS, limited kmem reads or local privilege escalation.
- + A source code patch exists which remedies this problem.

@@ -279,7 +279,7 @@ CVE-2006-2940
- + A source code patch exists which remedies this problem.

@@ -293,7 +293,7 @@ CVE-2006-3918
- + A source code patch exists which remedies this problem.