===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata57.html,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -r1.44 -r1.45
--- www/errata57.html 2017/03/28 04:04:52 1.44
+++ www/errata57.html 2017/03/28 06:41:18 1.45
@@ -71,7 +71,7 @@
Patches for the OpenBSD base system are distributed as unified diffs.
Each patch is cryptographically signed with the
-signify(1) tool and contains
+signify(1) tool and contains
usage instructions.
All the following patches are also available in one
tar.gz file
@@ -85,7 +85,7 @@
--
+
-
001: INSTALL ISSUE: May 1, 2015
sparc64
The "miniroot" install method is broken (related to the addition of
@@ -95,7 +95,7 @@
No patch is available for obvious reasons, so use a different install method.
-
-
+
-
002: SECURITY FIX: March 18, 2015
All architectures
Buffer overflows in libXfont
@@ -108,7 +108,7 @@
Note that the instructions should read cd /usr/xenocara/lib/libXfont
.
-
-
+
-
003: SECURITY FIX: March 19, 2015
All architectures
Fix several crash causing defects from OpenSSL.
@@ -127,7 +127,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
004: RELIABILITY FIX: April 17, 2015
All architectures
Fix a logic error in smtpd handling of SNI.
@@ -137,7 +137,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
005: RELIABILITY FIX: April 30, 2015
All architectures
A remote user can crash httpd by forcing the daemon to log to a file
@@ -147,7 +147,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
006: SECURITY FIX: April 30, 2015
All architectures
Malformed binaries could trigger kernel panics or view kernel memory.
@@ -156,7 +156,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
007: SECURITY FIX: April 30, 2015
All architectures
Multiple issues in tar/pax/cpio:
@@ -171,7 +171,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
008: RELIABILITY FIX: June 11, 2015
All architectures
Fix multiple reliability issues in smtpd:
@@ -183,7 +183,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
009: SECURITY FIX: June 11, 2015
All architectures
Fix several defects from OpenSSL:
@@ -201,7 +201,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
010: SECURITY FIX: July 14, 2015
All architectures
A TCP socket can become confused and not properly cleanup resources.
@@ -210,7 +210,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
011: RELIABILITY FIX: July 26, 2015
All architectures
A kernel memory leak could be triggered by an unprivileged user in
@@ -220,7 +220,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
012: SECURITY FIX: July 26, 2015
All architectures
The patch utility could be made to invoke arbitrary commands via
@@ -231,7 +231,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
013: SECURITY FIX: July 30, 2015
All architectures
The patch utility could become desyncronized processing ed(1)-style diffs.
@@ -240,7 +240,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
014: SECURITY FIX: August 16, 2015
All architectures
A change to sshd resulted in incorrect permissions being applied to pseudo
@@ -250,7 +250,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
015: RELIABILITY FIX: September 28, 2015
All architectures
Various problems were identified in relayd and merged back from
@@ -260,7 +260,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
016: RELIABILITY FIX: September 28, 2015
All architectures
An incorrect operation in uvm could result in system panics.
@@ -269,7 +269,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
017: SECURITY FIX: October 1, 2015
All architectures
Fix multiple reliability and security issues in smtpd:
@@ -288,7 +288,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
018: RELIABILITY FIX: October 14, 2015
All architectures
A problem with timer kevents could result in a kernel hang (local denial
@@ -297,7 +297,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
019: RELIABILITY FIX: October 15, 2015
All architectures
The OBJ_obj2txt function in libcrypto contains a one byte buffer overrun
@@ -306,7 +306,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
020: RELIABILITY FIX: November 9, 2015
All architectures
Insufficient validation of RSN element group cipher values in 802.11
@@ -315,7 +315,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
021: RELIABILITY FIX: Dec 3, 2015
All architectures
A NULL pointer deference could be triggered by a crafted certificate sent to
@@ -324,7 +324,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
022: SECURITY FIX: January 14, 2016
All architectures
Experimental roaming code in the ssh client could be tricked by a hostile sshd
@@ -337,7 +337,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
023: SECURITY FIX: March 10, 2016
All architectures
@@ -350,7 +350,7 @@
A source code patch exists which remedies this problem.
-
-
+
-
024: SECURITY FIX: March 16, 2016
All architectures
Insufficient checks in IPv6 socket binding and UDP IPv6 option