===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata47.html,v
retrieving revision 1.46
retrieving revision 1.47
diff -c -r1.46 -r1.47
*** www/errata47.html 2016/08/15 02:22:06 1.46
--- www/errata47.html 2016/10/16 19:11:30 1.47
***************
*** 70,76 ****
--- 70,76 ----
***************
*** 94,100 ****
mips64el, vax). Other address types (bare addresses "10.1.1.1" and
prefixes "10.1.1.1/30") are not affected.
!
A source code patch exists which remedies this problem.
--- 94,100 ----
mips64el, vax). Other address types (bare addresses "10.1.1.1" and
prefixes "10.1.1.1/30") are not affected.
!
A source code patch exists which remedies this problem.
***************
*** 112,118 ****
that nothing in the base OS uses this. Apache httpd started using this
in v2.3.3; this is newer than the version in ports.
!
A source code patch exists which remedies this problem.
--- 112,118 ----
that nothing in the base OS uses this. Apache httpd started using this
in v2.3.3; this is newer than the version in ports.
!
A source code patch exists which remedies this problem.
***************
*** 123,129 ****
leading to routing socket users that restrict the AF (such as ospfd)
not seeing any of the RTM_DELETE messages.
!
A source code patch exists which remedies this problem.
--- 123,129 ----
leading to routing socket users that restrict the AF (such as ospfd)
not seeing any of the RTM_DELETE messages.
!
A source code patch exists which remedies this problem.
***************
*** 139,145 ****
ubsec(4)).
!
A source code patch exists which remedies this problem.
--- 139,145 ----
ubsec(4)).
!
A source code patch exists which remedies this problem.
***************
*** 151,157 ****
handler may allow userland to modify kernel memory. By default root
privileges are needed to add or modify pf rules.
!
A source code patch exists which remedies this problem.
--- 151,157 ----
handler may allow userland to modify kernel memory. By default root
privileges are needed to add or modify pf rules.
!
A source code patch exists which remedies this problem.
***************
*** 163,169 ****
and use OpenSSL's internal caching mechanism. Servers that are multi-process
and/or disable internal session caching are not affected.
!
A source code patch exists which remedies this problem.
--- 163,169 ----
and use OpenSSL's internal caching mechanism. Servers that are multi-process
and/or disable internal session caching are not affected.
!
A source code patch exists which remedies this problem.
***************
*** 173,179 ****
Avoid calling scsi_done() more than once in gdt(4). Fixes a kernel panic triggered by syncing disks during shut down.
Clear the ITSDONE flag before issuing commands to the SCSI adapter. Fixes handling of retried SCSI commands.
!
A source code patch exists which remedies this problem.
--- 173,179 ----
Avoid calling scsi_done() more than once in gdt(4). Fixes a kernel panic triggered by syncing disks during shut down.
Clear the ITSDONE flag before issuing commands to the SCSI adapter. Fixes handling of retried SCSI commands.
!
A source code patch exists which remedies this problem.
***************
*** 182,188 ****
All architectures
Restore an unusual XS_SENSE semantic. Fixes dump(8)/restore(8) problems seen on certain tape drives.
!
A source code patch exists which remedies this problem.
--- 182,188 ----
All architectures
Restore an unusual XS_SENSE semantic. Fixes dump(8)/restore(8) problems seen on certain tape drives.
!
A source code patch exists which remedies this problem.
***************
*** 191,197 ****
All architectures
Incorrectly initialized state updates can cause pfsync update storms.
!
A source code patch exists which remedies this problem.
--- 191,197 ----
All architectures
Incorrectly initialized state updates can cause pfsync update storms.
!
A source code patch exists which remedies this problem.
***************
*** 199,205 ****
004: SECURITY FIX: April 23, 2010
All architectures
The combination of pfsync and IPSEC may crash the kernel.
!
A source code patch exists which remedies this problem.
--- 199,205 ----
004: SECURITY FIX: April 23, 2010
All architectures
The combination of pfsync and IPSEC may crash the kernel.
!
A source code patch exists which remedies this problem.
***************
*** 209,215 ****
In TLS connections, certain incorrectly formatted records can cause
an OpenSSL client or server to crash due to a read attempt at NULL.
!
A source code patch exists which remedies this problem.
--- 209,215 ----
In TLS connections, certain incorrectly formatted records can cause
an OpenSSL client or server to crash due to a read attempt at NULL.
!
A source code patch exists which remedies this problem.
***************
*** 224,230 ****
leading to a denial of service when a resource limit is apparently
reached.
!
A source code patch exists which remedies this problem.
--- 224,230 ----
leading to a denial of service when a resource limit is apparently
reached.
!
A source code patch exists which remedies this problem.
***************
*** 235,241 ****
paranoid enough in checking for underruns, which could potentially
lead to crashes.
!
A source code patch exists which remedies this problem.
--- 235,241 ----
paranoid enough in checking for underruns, which could potentially
lead to crashes.
!
A source code patch exists which remedies this problem.