===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata41.html,v
retrieving revision 1.35
retrieving revision 1.36
diff -c -r1.35 -r1.36
*** www/errata41.html 2014/03/28 03:04:30 1.35
--- www/errata41.html 2014/03/31 03:12:47 1.36
***************
*** 6,12 ****
-
--- 6,11 ----
***************
*** 65,99 ****
You can also fetch a tar.gz file containing all the following patches.
This file is updated once a day.
!
The patches below are available in CVS via the
OPENBSD_4_1
patch branch.
-
For more detailed information on how to install patches to OpenBSD, please
consult the OpenBSD FAQ.
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
--- 64,81 ----
You can also fetch a tar.gz file containing all the following patches.
This file is updated once a day.
+
! The patches below are available in CVS via the
OPENBSD_4_1
patch branch.
+
For more detailed information on how to install patches to OpenBSD, please
consult the OpenBSD FAQ.
+
+
-
***************
*** 102,108 ****
by refusing to listen on a port unless all address families bind
successfully.
! A source code patch exists which remedies this problem.
-
--- 84,90 ----
by refusing to listen on a port unless all address families bind
successfully.
! A source code patch exists which remedies this problem.
-
***************
*** 112,132 ****
execute arbitrary commands. This behaviour was documented, but was an unsafe
default and an extra hassle for administrators.
! A source code patch exists which remedies this problem.
-
014: SECURITY FIX: March 7, 2008 All architectures
Buffer overflow in ppp command prompt parsing.
! A source code patch exists which remedies this problem.
-
013: RELIABILITY FIX: February 22, 2008 All architectures
Incorrect assumptions in tcp_respond can lead to a kernel panic.
! A source code patch exists which remedies this problem.
-
--- 94,114 ----
execute arbitrary commands. This behaviour was documented, but was an unsafe
default and an extra hassle for administrators.
! A source code patch exists which remedies this problem.
-
014: SECURITY FIX: March 7, 2008 All architectures
Buffer overflow in ppp command prompt parsing.
! A source code patch exists which remedies this problem.
-
013: RELIABILITY FIX: February 22, 2008 All architectures
Incorrect assumptions in tcp_respond can lead to a kernel panic.
! A source code patch exists which remedies this problem.
-
***************
*** 147,153 ****
CVE-2008-0006.
! A source code patch exists which remedies this problem.
-
--- 129,135 ----
CVE-2008-0006.
! A source code patch exists which remedies this problem.
-
***************
*** 155,161 ****
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
! A source code patch exists which remedies this problem.
-
--- 137,143 ----
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
! A source code patch exists which remedies this problem.
-
***************
*** 165,199 ****
the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
! A source code patch exists which remedies this problem.
-
009: SECURITY FIX: July 9, 2007 All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
! A source code patch exists which remedies this problem.
-
008: STABILITY FIX: May 9, 2007 All Architectures
A malicious client can cause a division by zero.
! A source code patch exists which remedies this problem.
-
007: RELIABILITY FIX: April 30, 2007 All architectures
Link state is not correctly tracked in ospfd and ripd.
! A source code patch exists which remedies this problem.
-
006: STABILITY FIX: April 27, 2007 PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
! A source code patch exists which remedies this problem.
-
--- 147,181 ----
the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
! A source code patch exists which remedies this problem.
-
009: SECURITY FIX: July 9, 2007 All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
! A source code patch exists which remedies this problem.
-
008: STABILITY FIX: May 9, 2007 All Architectures
A malicious client can cause a division by zero.
! A source code patch exists which remedies this problem.
-
007: RELIABILITY FIX: April 30, 2007 All architectures
Link state is not correctly tracked in ospfd and ripd.
! A source code patch exists which remedies this problem.
-
006: STABILITY FIX: April 27, 2007 PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
! A source code patch exists which remedies this problem.
-
***************
*** 202,208 ****
hosts and networks. This is a design flaw in IPv6 and not a bug in
OpenBSD.
! A source code patch exists which remedies this problem.
-
--- 184,190 ----
hosts and networks. This is a design flaw in IPv6 and not a bug in
OpenBSD.
! A source code patch exists which remedies this problem.
-
***************
*** 219,225 ****
CVE-2007-1667.
! A source code patch exists which remedies this problem.
-
--- 201,207 ----
CVE-2007-1667.
! A source code patch exists which remedies this problem.
-
***************
*** 227,240 ****
Bugs found in the spamd sychronization mechanism could cause corrupted
databases.
! A source code patch exists which remedies this problem.
-
002: STABILITY FIX: April 27, 2007 All architectures
Incorrect spl level can lead to panics under heavy kqueue usage.
! A source code patch exists which remedies this problem.
-
--- 209,222 ----
Bugs found in the spamd sychronization mechanism could cause corrupted
databases.
! A source code patch exists which remedies this problem.
-
002: STABILITY FIX: April 27, 2007 All architectures
Incorrect spl level can lead to panics under heavy kqueue usage.
! A source code patch exists which remedies this problem.
-
***************
*** 247,253 ****
Use "block in inet6" in /etc/pf.conf
! A source code patch exists which remedies this problem.
--- 229,235 ----
Use "block in inet6" in /etc/pf.conf
! A source code patch exists which remedies this problem.