===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata41.html,v
retrieving revision 1.36
retrieving revision 1.37
diff -u -r1.36 -r1.37
--- www/errata41.html 2014/03/31 03:12:47 1.36
+++ www/errata41.html 2014/03/31 16:02:48 1.37
@@ -79,7 +79,8 @@
-
-016: SECURITY FIX: April 3, 2008 All architectures
+016: SECURITY FIX: April 3, 2008
+ All architectures
Avoid possible hijacking of X11-forwarded connections with sshd(8)
by refusing to listen on a port unless all address families bind
successfully.
@@ -88,7 +89,8 @@
-
-015: SECURITY FIX: March 30, 2008 All architectures
+015: SECURITY FIX: March 30, 2008
+ All architectures
sshd(8) would execute ~/.ssh/rc even when a sshd_config(5) ForceCommand
directive was in effect, allowing users with write access to this file to
execute arbitrary commands. This behaviour was documented, but was an unsafe
@@ -98,21 +100,24 @@
-
-014: SECURITY FIX: March 7, 2008 All architectures
+014: SECURITY FIX: March 7, 2008
+ All architectures
Buffer overflow in ppp command prompt parsing.
A source code patch exists which remedies this problem.
-
-013: RELIABILITY FIX: February 22, 2008 All architectures
+013: RELIABILITY FIX: February 22, 2008
+ All architectures
Incorrect assumptions in tcp_respond can lead to a kernel panic.
A source code patch exists which remedies this problem.
-
-012: SECURITY FIX: February 8, 2008 All architectures
+012: SECURITY FIX: February 8, 2008
+ All architectures
2nd revision, February 10, 2008
Multiple vulnerabilities have been discovered in X.Org.
XFree86 Misc extension out of bounds array index,
@@ -133,7 +138,8 @@
-
-011: SECURITY FIX: October 10, 2007 All architectures
+011: SECURITY FIX: October 10, 2007
+ All architectures
The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.
@@ -141,7 +147,8 @@
-
-010: SECURITY FIX: October 8, 2007 All architectures
+010: SECURITY FIX: October 8, 2007
+ All architectures
Malicious DHCP clients could cause dhcpd(8) to corrupt its stack
A DHCP client that claimed to require a maximum message size less than
the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
@@ -151,35 +158,40 @@
-
-009: SECURITY FIX: July 9, 2007 All Architectures
+009: SECURITY FIX: July 9, 2007
+ All Architectures
Fix possible heap overflow in file(1), aka CVE-2007-1536.
A source code patch exists which remedies this problem.
-
-008: STABILITY FIX: May 9, 2007 All Architectures
+008: STABILITY FIX: May 9, 2007
+ All Architectures
A malicious client can cause a division by zero.
A source code patch exists which remedies this problem.
-
-007: RELIABILITY FIX: April 30, 2007 All architectures
+007: RELIABILITY FIX: April 30, 2007
+ All architectures
Link state is not correctly tracked in ospfd and ripd.
A source code patch exists which remedies this problem.
-
-006: STABILITY FIX: April 27, 2007 PowerPC
+006: STABILITY FIX: April 27, 2007
+ PowerPC
An unhandled AltiVec assist exception can cause a kernel panic.
A source code patch exists which remedies this problem.
-
-005: SECURITY FIX: April 27, 2007 All architectures
+005: SECURITY FIX: April 27, 2007
+ All architectures
IPv6 type 0 route headers can be used to mount a DoS attack against
hosts and networks. This is a design flaw in IPv6 and not a bug in
OpenBSD.
@@ -188,7 +200,8 @@
-
-004: SECURITY FIX: April 27, 2007 All architectures
+004: SECURITY FIX: April 27, 2007
+ All architectures
Multiple vulnerabilities have been discovered in X.Org.
XC-MISC extension ProcXCMiscGetXIDList memory corruption vulnerability,
BDFFont parsing integer overflow vulnerability,
@@ -205,7 +218,8 @@
-
-003: RELIABILITY FIX: April 27, 2007 All architectures
+003: RELIABILITY FIX: April 27, 2007
+ All architectures
Bugs found in the spamd sychronization mechanism could cause corrupted
databases.
@@ -213,14 +227,16 @@
-
-002: STABILITY FIX: April 27, 2007 All architectures
+002: STABILITY FIX: April 27, 2007
+ All architectures
Incorrect spl level can lead to panics under heavy kqueue usage.
A source code patch exists which remedies this problem.
-
-001: SECURITY FIX: April 27, 2007 All architectures
+001: SECURITY FIX: April 27, 2007
+ All architectures
Incorrect mbuf handling for ICMP6 packets.
Using
pf(4)