version 1.217, 2002/07/03 13:59:04 |
version 1.218, 2002/07/30 13:42:54 |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata.html#ssl>July 30, 2002: |
|
Several remote buffer overflows can occur in the SSL2 server and SSL3 |
|
client of the ssl(8) library, as in the ASN.1 parser code in the |
|
crypto(3) library, all of them being potentially remotely |
|
exploitable.</a> |
|
<li><a href=errata.html#xdr>July 29, 2002: |
|
A buffer overflow can occur in the xdr_array(3) RPC code, leading to |
|
possible remote crash.</a> |
|
<li><a href=errata.html#pppd>July 29, 2002: |
|
A race condition exists in the pppd(8) daemon which may cause it to |
|
alter the file permissions of an arbitrary file.</a> |
|
<li><a href=errata.html#isakmpd>July 5, 2002: |
|
Receiving IKE payloads out of sequence can cause isakmpd(8) to |
|
crash.</a> |
<li><a href=errata.html#ktrace>June 27, 2002: |
<li><a href=errata.html#ktrace>June 27, 2002: |
The kernel would let any user ktrace set[ug]id processes.</a> |
The kernel would let any user ktrace set[ug]id processes.</a> |
<li><a href=errata.html#modssl>June 26, 2002: |
<li><a href=errata.html#modssl>June 26, 2002: |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata30.html#ssl>July 30, 2002: |
|
Several remote buffer overflows can occur in the SSL2 server and SSL3 |
|
client of the ssl(8) library, as in the ASN.1 parser code in the |
|
crypto(3) library, all of them being potentially remotely |
|
exploitable.</a> |
|
<li><a href=errata30.html#xdr>July 29, 2002: |
|
A buffer overflow can occur in the xdr_array(3) RPC code, leading to |
|
possible remote crash.</a> |
|
<li><a href=errata30.html#pppd>July 29, 2002: |
|
A race condition exists in the pppd(8) daemon which may cause it to |
|
alter the file permissions of an arbitrary file.</a> |
|
<li><a href=errata30.html#isakmpd>July 5, 2002: |
|
Receiving IKE payloads out of sequence can cause isakmpd(8) to |
|
crash.</a> |
<li><a href=errata30.html#ktrace>June 27, 2002: |
<li><a href=errata30.html#ktrace>June 27, 2002: |
The kernel would let any user ktrace set[ug]id processes.</a> |
The kernel would let any user ktrace set[ug]id processes.</a> |
<li><a href=errata30.html#resolver>June 25, 2002: |
<li><a href=errata30.html#resolver>June 25, 2002: |