=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata47.html,v retrieving revision 1.46 retrieving revision 1.47 diff -c -r1.46 -r1.47 *** www/errata47.html 2016/08/15 02:22:06 1.46 --- www/errata47.html 2016/10/16 19:11:30 1.47 *************** *** 70,76 ****
! You can also fetch a tar.gz file containing all the following patches. This file is updated once a day.

--- 70,76 ----

! You can also fetch a tar.gz file containing all the following patches. This file is updated once a day.

*************** *** 94,100 **** mips64el, vax). Other address types (bare addresses "10.1.1.1" and prefixes "10.1.1.1/30") are not affected.
! A source code patch exists which remedies this problem.

--- 94,100 ---- mips64el, vax). Other address types (bare addresses "10.1.1.1" and prefixes "10.1.1.1/30") are not affected.
! A source code patch exists which remedies this problem.

*************** *** 112,118 **** that nothing in the base OS uses this. Apache httpd started using this in v2.3.3; this is newer than the version in ports.
! A source code patch exists which remedies this problem.

--- 112,118 ---- that nothing in the base OS uses this. Apache httpd started using this in v2.3.3; this is newer than the version in ports.
! A source code patch exists which remedies this problem.

*************** *** 123,129 **** leading to routing socket users that restrict the AF (such as ospfd) not seeing any of the RTM_DELETE messages.
! A source code patch exists which remedies this problem.

--- 123,129 ---- leading to routing socket users that restrict the AF (such as ospfd) not seeing any of the RTM_DELETE messages.
! A source code patch exists which remedies this problem.

*************** *** 139,145 **** ubsec(4)).
! A source code patch exists which remedies this problem.

--- 139,145 ---- ubsec(4)).
! A source code patch exists which remedies this problem.

*************** *** 151,157 **** handler may allow userland to modify kernel memory. By default root privileges are needed to add or modify pf rules.
! A source code patch exists which remedies this problem.

--- 151,157 ---- handler may allow userland to modify kernel memory. By default root privileges are needed to add or modify pf rules.
! A source code patch exists which remedies this problem.

*************** *** 163,169 **** and use OpenSSL's internal caching mechanism. Servers that are multi-process and/or disable internal session caching are not affected.
! A source code patch exists which remedies this problem.

--- 163,169 ---- and use OpenSSL's internal caching mechanism. Servers that are multi-process and/or disable internal session caching are not affected.
! A source code patch exists which remedies this problem.

*************** *** 173,179 **** Avoid calling scsi_done() more than once in gdt(4). Fixes a kernel panic triggered by syncing disks during shut down.
Clear the ITSDONE flag before issuing commands to the SCSI adapter. Fixes handling of retried SCSI commands.
! A source code patch exists which remedies this problem.

--- 173,179 ---- Avoid calling scsi_done() more than once in gdt(4). Fixes a kernel panic triggered by syncing disks during shut down.
Clear the ITSDONE flag before issuing commands to the SCSI adapter. Fixes handling of retried SCSI commands.
! A source code patch exists which remedies this problem.

*************** *** 182,188 ****   All architectures
Restore an unusual XS_SENSE semantic. Fixes dump(8)/restore(8) problems seen on certain tape drives.
! A source code patch exists which remedies this problem.

--- 182,188 ----   All architectures
Restore an unusual XS_SENSE semantic. Fixes dump(8)/restore(8) problems seen on certain tape drives.
! A source code patch exists which remedies this problem.

*************** *** 191,197 ****   All architectures
Incorrectly initialized state updates can cause pfsync update storms.
! A source code patch exists which remedies this problem.

--- 191,197 ----   All architectures
Incorrectly initialized state updates can cause pfsync update storms.
! A source code patch exists which remedies this problem.

*************** *** 199,205 **** 004: SECURITY FIX: April 23, 2010   All architectures
The combination of pfsync and IPSEC may crash the kernel.
! A source code patch exists which remedies this problem.

--- 199,205 ---- 004: SECURITY FIX: April 23, 2010   All architectures
The combination of pfsync and IPSEC may crash the kernel.
! A source code patch exists which remedies this problem.

*************** *** 209,215 **** In TLS connections, certain incorrectly formatted records can cause an OpenSSL client or server to crash due to a read attempt at NULL.
! A source code patch exists which remedies this problem.

--- 209,215 ---- In TLS connections, certain incorrectly formatted records can cause an OpenSSL client or server to crash due to a read attempt at NULL.
! A source code patch exists which remedies this problem.

*************** *** 224,230 **** leading to a denial of service when a resource limit is apparently reached.
! A source code patch exists which remedies this problem.

--- 224,230 ---- leading to a denial of service when a resource limit is apparently reached.
! A source code patch exists which remedies this problem.

*************** *** 235,241 **** paranoid enough in checking for underruns, which could potentially lead to crashes.
! A source code patch exists which remedies this problem.

--- 235,241 ---- paranoid enough in checking for underruns, which could potentially lead to crashes.
! A source code patch exists which remedies this problem.