www/security.html - diff

Return to security.html CVS log

Up to [local] / www

version 1.228, 2002/11/05 15:30:43

version 1.229, 2002/11/06 23:37:17

Line 196

<p>

<ul>

<li><a href=errata.html#smrsh>November 6, 2002:

An attacker can bypass smrsh(8)'s restrictions and execute

arbitrary commands with the privileges of his own account.</a>

<li><a href=errata.html#kadmin>October 21, 2002:

A buffer overflow can occur in the kadmind(8) daemon, leading

to possible remote crash or exploit.</a>

Line 213

Line 216

<p>

<ul>

<li><a href=errata31.html#kernresource>November 6, 2002:

Incorrect argument checking in the getitimer(2) system call

may allow an attacker to crash the system.</a>

<li><a href=errata31.html#smrsh>November 6, 2002:

An attacker can bypass smrsh(8)'s restrictions and execute

arbitrary commands with the privileges of his own account.</a>

<li><a href=errata31.html#kadmin>October 21, 2002:

A buffer overflow can occur in the kadmind(8) daemon, leading

to possible remote crash or exploit.</a>

Line 282

Line 291

<p>

<ul>

<li><a href=errata30.html#kernresource>November 6, 2002:

Incorrect argument checking in the getitimer(2) system call

may allow an attacker to crash the system.</a>

<li><a href=errata30.html#smrsh>November 6, 2002:

An attacker can bypass smrsh(8)'s restrictions and execute

arbitrary commands with the privileges of his own account.</a>

<li><a href=errata30.html#kadmin>October 21, 2002:

A buffer overflow can occur in the kadmind(8) daemon, leading

to possible remote crash or exploit.</a>