=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata43.html,v retrieving revision 1.19 retrieving revision 1.20 diff -c -r1.19 -r1.20 *** www/errata43.html 2009/02/22 22:09:38 1.19 --- www/errata43.html 2009/04/08 02:33:03 1.20 *************** *** 85,90 **** --- 85,107 ----

+ 012: RELIABILITY FIX: April 8, 2009 All architectures
+ The OpenSSL ASN.1 handling code could be forced to perform invalid memory + accesses though the use of certain invalid strings + (CVE-2009-0590) + or under certain error conditions triggerable by invalid ASN.1 structures + (CVE-2009-0789). + These vulnerabilities could be exploited to achieve a + denial-of-service. A more detailed description of these problems is available + in the + OpenSSL security advisory, but note that the other issue described there "Incorrect Error + Checking During CMS verification" relates to code not enabled in OpenBSD. +
+ + A source code patch exists which remedies this problem.
+
+
011: SECURITY FIX: February 22, 2009 All architectures
sudo(8) may allow a user listed in the sudoers file to run a command *************** *** 248,254 ****
www@openbsd.org !
$OpenBSD: errata43.html,v 1.19 2009/02/22 22:09:38 millert Exp $ --- 265,271 ----
www@openbsd.org !
$OpenBSD: errata43.html,v 1.20 2009/04/08 02:33:03 djm Exp $