===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata42.html,v
retrieving revision 1.42
retrieving revision 1.43
diff -c -r1.42 -r1.43
*** www/errata42.html	2014/03/28 03:04:30	1.42
--- www/errata42.html	2014/03/31 03:12:47	1.43
***************
*** 6,12 ****
  <meta name="description" content="the OpenBSD CD errata page">
  <meta name="keywords" content="openbsd,cd,errata">
  <meta name="distribution" content="global">
- <meta name="copyright" content="This document copyright 1997-2007 by OpenBSD.">
  <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
  </head>
  
--- 6,11 ----
***************
*** 64,98 ****
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2.tar.gz">
  You can also fetch a tar.gz file containing all the following patches</a>.
  This file is updated once a day.
  
! <p> The patches below are available in CVS via the
  <code>OPENBSD_4_2</code> <a href="stable.html">patch branch</a>.
- 
  <p>
  For more detailed information on how to install patches to OpenBSD, please
  consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>.
  <hr>
  
- <!-- Temporarily put anchors for all archs here.  Remove later. -->
- <a name="all"></a>
- <a name="alpha"></a>
- <a name="amd64"></a>
- <a name="armish"></a>
- <a name="cats"></a>
- <a name="hp300"></a>
- <a name="hppa"></a>
- <a name="i386"></a>
- <a name="luna88k"></a>
- <a name="mac68k"></a>
- <a name="macppc"></a>
- <a name="mvme68k"></a>
- <a name="mvme88k"></a>
- <a name="sgi"></a>
- <a name="sparc"></a>
- <a name="sparc64"></a>
- <a name="vax"></a>
- <a name="zaurus"></a>
- 
  <ul>
  
  <li><a name="015_ndp"></a>
--- 63,80 ----
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2.tar.gz">
  You can also fetch a tar.gz file containing all the following patches</a>.
  This file is updated once a day.
+ <p>
  
! The patches below are available in CVS via the
  <code>OPENBSD_4_2</code> <a href="stable.html">patch branch</a>.
  <p>
+ 
  For more detailed information on how to install patches to OpenBSD, please
  consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>.
+ <p>
+ 
  <hr>
  
  <ul>
  
  <li><a name="015_ndp"></a>
***************
*** 104,110 ****
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2476">CVE-2008-2476</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/015_ndp.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="014_pcb"></a>
--- 86,92 ----
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2476">CVE-2008-2476</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/015_ndp.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="014_pcb"></a>
***************
*** 114,120 ****
  enabled by default, this condition affects all systems.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/014_pcb.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="013_bind"></a>
--- 96,102 ----
  enabled by default, this condition affects all systems.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/014_pcb.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="013_bind"></a>
***************
*** 125,131 ****
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447">CVE-2008-1447</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/013_bind.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="012_xorg2"></a>
--- 107,113 ----
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447">CVE-2008-1447</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/013_bind.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="012_xorg2"></a>
***************
*** 143,149 ****
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377">CVE-2008-1377</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/012_xorg2.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="011_openssh2"></a>
--- 125,131 ----
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377">CVE-2008-1377</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/012_xorg2.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="011_openssh2"></a>
***************
*** 152,158 ****
  by refusing to listen on a port unless all address families bind
  successfully.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/011_openssh2.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="010_openssh"></a>
--- 134,140 ----
  by refusing to listen on a port unless all address families bind
  successfully.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/011_openssh2.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="010_openssh"></a>
***************
*** 162,189 ****
  execute arbitrary commands. This behaviour was documented, but was an unsafe
  default and an extra hassle for administrators.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/010_openssh.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="009_ppp"></a>
  <font color="#009000"><strong>009: SECURITY FIX: March 7, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Buffer overflow in ppp command prompt parsing.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/009_ppp.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="008_ip6rthdr"></a>
  <font color="#009000"><strong>008: RELIABILITY FIX: February 25, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Malformed IPv6 routing headers can cause a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/008_ip6rthdr.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="007_tcprespond"></a>
  <font color="#009000"><strong>007: RELIABILITY FIX: February 22, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Incorrect assumptions in tcp_respond can lead to a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/007_tcprespond.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="006_xorg"></a>
--- 144,171 ----
  execute arbitrary commands. This behaviour was documented, but was an unsafe
  default and an extra hassle for administrators.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/010_openssh.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="009_ppp"></a>
  <font color="#009000"><strong>009: SECURITY FIX: March 7, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Buffer overflow in ppp command prompt parsing.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/009_ppp.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="008_ip6rthdr"></a>
  <font color="#009000"><strong>008: RELIABILITY FIX: February 25, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Malformed IPv6 routing headers can cause a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/008_ip6rthdr.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="007_tcprespond"></a>
  <font color="#009000"><strong>007: RELIABILITY FIX: February 22, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  Incorrect assumptions in tcp_respond can lead to a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/007_tcprespond.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="006_xorg"></a>
***************
*** 204,224 ****
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006">CVE-2008-0006</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/006_xorg.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="005_ifrtlabel"></a>
  <font color="#009000"><strong>005: RELIABILITY FIX: January 11, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  A missing NULL pointer check can lead to a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/005_ifrtlabel.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="004_pf"></a>
  <font color="#009000"><strong>004: RELIABILITY FIX: November 27, 2007</strong></font> &nbsp; <i>All architectures</i><br>
  A memory leak in pf can lead to machine lockups.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/004_pf.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="003_i386_boot"></a>
--- 186,206 ----
  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006">CVE-2008-0006</a>.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/006_xorg.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="005_ifrtlabel"></a>
  <font color="#009000"><strong>005: RELIABILITY FIX: January 11, 2008</strong></font> &nbsp; <i>All architectures</i><br>
  A missing NULL pointer check can lead to a kernel panic.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/005_ifrtlabel.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="004_pf"></a>
  <font color="#009000"><strong>004: RELIABILITY FIX: November 27, 2007</strong></font> &nbsp; <i>All architectures</i><br>
  A memory leak in pf can lead to machine lockups.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/004_pf.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="003_i386_boot"></a>
***************
*** 245,251 ****
  <font color="#009000"><strong>002: SECURITY FIX: October 10, 2007</strong></font> &nbsp; <i>All architectures</i><br>
  The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/002_openssl.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  <li><a name="001_dhcpd"></a>
--- 227,233 ----
  <font color="#009000"><strong>002: SECURITY FIX: October 10, 2007</strong></font> &nbsp; <i>All architectures</i><br>
  The SSL_get_shared_ciphers() function in OpenSSL contains an off-by-one overflow.<br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/002_openssl.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  <li><a name="001_dhcpd"></a>
***************
*** 255,261 ****
  the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/001_dhcpd.patch">
! A source code patch exists which remedies this problem</a>.<br>
  <p>
  
  </ul>
--- 237,243 ----
  the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
  <br>
  <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/4.2/common/001_dhcpd.patch">
! A source code patch exists which remedies this problem.</a>
  <p>
  
  </ul>