=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata43.html,v retrieving revision 1.23 retrieving revision 1.24 diff -u -r1.23 -r1.24 --- www/errata43.html 2009/04/11 23:46:45 1.23 +++ www/errata43.html 2009/04/13 08:45:40 1.24 @@ -91,7 +91,7 @@ When pf attempts to perform translation on a specially crafted IP datagram, a null pointer dereference will occur, resulting in a kernel panic. In certain configurations this may be triggered by a remote attacker. -
+
Restricting translation rules to protocols that are specific to the IP version
in use, is an effective workaround until the patch can be installed. As an
example, for IPv4 nat/binat/rdr rules you can use:
@@ -287,7 +287,7 @@