===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata53.html,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -r1.44 -r1.45
--- www/errata53.html	2016/08/15 02:22:06	1.44
+++ www/errata53.html	2016/10/16 19:11:30	1.45
@@ -70,7 +70,7 @@
 <br>
 <hr>
 
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3.tar.gz">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3.tar.gz">
 You can also fetch a tar.gz file containing all the following patches</a>.
 This file is updated once a day.
 <p>
@@ -94,7 +94,7 @@
 inspection (we do not know how to reproduce it, consider that a challenge).
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/001_bgpd.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/001_bgpd.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -105,7 +105,7 @@
 >vr(4)</a> driver that may cause it to not recover from some error conditions.
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/002_vr.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/002_vr.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -120,7 +120,7 @@
 upstream proxied server.
 This issue was assigned CVE-2013-2070.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/003_nginx.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/003_nginx.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -132,7 +132,7 @@
 a kernel panic.
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/004_route.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/004_route.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -143,7 +143,7 @@
 SIOCSIFADDR ioctl is performed upon an AF_INET6 socket with a specially
 crafted parameter.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/005_in6.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/005_in6.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -154,7 +154,7 @@
 TFTP options could cause OACK generation to fail, which in turn
 caused a double free in tftpd.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/006_tftpd.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/006_tftpd.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -164,7 +164,7 @@
 Two flaws in the <a href="http://man.openbsd.org/?query=vio&sektion=4">vio(4)</a>
 driver may cause a kernel panic, and may cause IPv6 neighbour discovery to fail
 due to multicast receive problems.<br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/007_vio.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/007_vio.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -176,7 +176,7 @@
 interface destruction.
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/008_pflow.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/008_pflow.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -186,11 +186,11 @@
 A memory corruption vulnerability exists in the post-authentication sshd process
 when an AES-GCM cipher (aes128-gcm@openssh.com or aes256-gcm@openssh.com) is
 selected during kex exchange.
-Review the <a href="http://www.openssh.com/txt/gcmrekey.adv">gcmrekey advisory</a>
+Review the <a href="https://www.openssh.com/txt/gcmrekey.adv">gcmrekey advisory</a>
 for a mitigation.
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/009_sshgcm.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/009_sshgcm.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -201,7 +201,7 @@
 An unprivileged user may hang the system.
 
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/010_vnode.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/010_vnode.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -214,7 +214,7 @@
 configurations by using a specially crafted request.
 This issue was assigned CVE-2013-4547.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/011_nginx.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/011_nginx.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -225,7 +225,7 @@
 the application.  The i386, amd64, vax and m68k platforms aren't
 affected.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/012_sha512.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/012_sha512.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -236,7 +236,7 @@
 a buffer on the stack in the X server.
 This issue was assigned CVE-2013-6462.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/013_libXfont.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/013_libXfont.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -246,7 +246,7 @@
 Missing bounds checking in OpenSSL's implementation of the TLS/DTLS
 heartbeat extension (RFC6520) which can result in a leak of memory contents.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/014_openssl.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/014_openssl.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
@@ -256,7 +256,7 @@
 A use-after-free race condition in OpenSSL's read buffer may permit an attacker
 to inject data from one connection into another.
 <br>
-<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/015_openssl.patch">
+<a href="https://ftp.openbsd.org/pub/OpenBSD/patches/5.3/common/015_openssl.patch">
 A source code patch exists which remedies this problem.</a>
 <p>
 
