===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.135
retrieving revision 1.136
diff -c -r1.135 -r1.136
*** www/security.html	2000/06/28 18:10:02	1.135
--- www/security.html	2000/07/05 22:40:38	1.136
***************
*** 190,195 ****
--- 190,205 ----
  
  <p>
  <ul>
+ <li><a href=errata.html#ftpd>July 5, 2000:
+ 	Just like pretty much all the other unix ftp daemons
+ 	on the planet, ftpd had a remote root hole in it.
+ 	Luckily, ftpd was not enabled by default.
+ 	The problem exists if anonymous ftp is enabled, or if a
+ 	hostile user has a valid login.
+ 	(patch included)</a>
+ <li><a href=errata.html#mopd>July 5, 2000:
+ 	Mopd, very rarely used, contained some buffer overflows.
+ 	(patch included)</a>
  <li><a href=errata.html#libedit>June 28, 2000:
  	libedit would check for a <b>.editrc</b> file in the current
  	directory.  Not known to be a real security issue, but a patch
***************
*** 549,555 ****
  <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
  <br>
! <small>$OpenBSD: security.html,v 1.135 2000/06/28 18:10:02 deraadt Exp $</small>
  
  </body>
  </html>
--- 559,565 ----
  <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
  <br>
! <small>$OpenBSD: security.html,v 1.136 2000/07/05 22:40:38 deraadt Exp $</small>
  
  </body>
  </html>