===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata44.html,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -r1.14 -r1.15
--- www/errata44.html 2009/02/22 22:09:38 1.14
+++ www/errata44.html 2009/04/08 02:33:03 1.15
@@ -85,6 +85,23 @@
+-
+012: RELIABILITY FIX: April 8, 2009 All architectures
+The OpenSSL ASN.1 handling code could be forced to perform invalid memory
+accesses though the use of certain invalid strings
+(CVE-2009-0590)
+or under certain error conditions triggerable by invalid ASN.1 structures
+(CVE-2009-0789).
+These vulnerabilities could be exploited to achieve a
+denial-of-service. A more detailed description of these problems is available
+in the
+OpenSSL security advisory, but note that the other issue described there "Incorrect Error
+Checking During CMS verification" relates to code not enabled in OpenBSD.
+
+
+A source code patch exists which remedies this problem.
+
+
-
011: SECURITY FIX: February 22, 2009 All architectures
sudo(8) may allow a user listed in the sudoers file to run a command
@@ -240,7 +257,7 @@
www@openbsd.org
-
$OpenBSD: errata44.html,v 1.14 2009/02/22 22:09:38 millert Exp $
+
$OpenBSD: errata44.html,v 1.15 2009/04/08 02:33:03 djm Exp $