===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata43.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -c -r1.2 -r1.3
*** www/errata43.html 2008/03/31 01:40:47 1.2
--- www/errata43.html 2008/04/03 06:00:14 1.3
***************
*** 83,88 ****
--- 83,97 ----
+ -
+ 002: SECURITY FIX: April 3, 2008 All architectures
+ Avoid possible hijacking of X11-forwarded connections with sshd(8)
+ by refusing to listen on a port unless all address families bind
+ successfully.
+
+ A source code patch exists which remedies this problem.
+
+
-
001: SECURITY FIX: March 30, 2008 All architectures
sshd(8) would execute ~/.ssh/rc even when a sshd_config(5) ForceCommand
***************
*** 127,133 ****
www@openbsd.org
!
$OpenBSD: errata43.html,v 1.2 2008/03/31 01:40:47 brad Exp $