===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata41.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -c -r1.1 -r1.2
*** www/errata41.html 2007/03/06 02:06:02 1.1
--- www/errata41.html 2007/04/28 05:21:52 1.2
***************
*** 81,88 ****
! - No patches yet, because it is not released yet!
--- 81,148 ----
! -
! 006: STABILITY FIX: April 27, 2007 PowerPC
! An unhandled AltiVec assist exception can cause a kernel panic.
!
! A source code patch exists which remedies this problem.
!
+
-
+ 005: SECURITY FIX: April 27, 2007 All architectures
+ IPv6 type 0 route headers can be used to mount a DoS attack against
+ hosts and networks. This is a design flaw in IPv6 and not a bug in
+ OpenBSD.
+
+ A source code patch exists which remedies this problem.
+
+
+
-
+ 004: SECURITY FIX: April 27, 2007 All architectures
+ Multiple vulnerabilities have been discovered in X.Org.
+ XC-MISC extension ProcXCMiscGetXIDList memory corruption vulnerability,
+ BDFFont parsing integer overflow vulnerability,
+ fonts.dir file parsing integer overflow vulnerability,
+ multiple integer overflows in the XGetPixel() and XInitImage functions
+ in ImUtil.c.
+ CVE-2007-1003,
+ CVE-2007-1351,
+ CVE-2007-1352,
+ CVE-2007-1667.
+
+
+ A source code patch exists which remedies this problem.
+
+
+
-
+ 003: RELIABILITY FIX: April 27, 2007 All architectures
+ Bugs found in the spamd sychronization mechanism could cause corrupted
+ databases.
+
+ A source code patch exists which remedies this problem.
+
+
+
-
+ 002: STABILITY FIX: April 27, 2007 All architectures
+ Incorrect spl level can lead to panics under heavy kqueue usage.
+
+ A source code patch exists which remedies this problem.
+
+
+
-
+ 001: SECURITY FIX: April 27, 2007 All architectures
+ Incorrect mbuf handling for ICMP6 packets.
+ Using
+ pf(4)
+ to avoid the problem packets is an effective workaround until the patch
+ can be installed.
+ Use "block in inet6" in /etc/pf.conf
+
+
+ A source code patch exists which remedies this problem.
+
+
+
***************
*** 115,121 ****
www@openbsd.org
!
$OpenBSD: errata41.html,v 1.1 2007/03/06 02:06:02 deraadt Exp $