+Bring CBC oracle attack countermeasures to hardware crypto accelerator land. +This fixes aes-ni, via xcrypt and various drivers +(glxsb(4), +hifn(4), +safe(4) +and +ubsec(4)). +
+ +A source code patch exists which remedies this problem.
+
+ +
+Insufficent initialization of the pf rule structure in the ioctl +handler may allow userland to modify kernel memory. By default root +privileges are needed to add or modify pf rules. +
+ +A source code patch exists which remedies this problem.
+
+
Fix a flaw in the OpenSSL TLS server extension code parsing which could lead to @@ -166,7 +190,7 @@
www@openbsd.org
-$OpenBSD: errata48.html,v 1.4 2010/11/18 08:34:45 jasper Exp $ +
$OpenBSD: errata48.html,v 1.5 2010/12/17 16:36:18 jasper Exp $