[BACK]Return to security.html CVS log [TXT][DIR] Up to [local] / www

Diff for /www/security.html between version 1.217 and 1.218

version 1.217, 2002/07/03 13:59:04 version 1.218, 2002/07/30 13:42:54
Line 194 
Line 194 
   
 <p>  <p>
 <ul>  <ul>
   <li><a href=errata.html#ssl>July 30, 2002:
           Several remote buffer overflows can occur in the SSL2 server and SSL3
           client of the ssl(8) library, as in the ASN.1 parser code in the
           crypto(3) library, all of them being potentially remotely
           exploitable.</a>
   <li><a href=errata.html#xdr>July 29, 2002:
           A buffer overflow can occur in the xdr_array(3) RPC code, leading to
           possible remote crash.</a>
   <li><a href=errata.html#pppd>July 29, 2002:
           A race condition exists in the pppd(8) daemon which may cause it to
           alter the file permissions of an arbitrary file.</a>
   <li><a href=errata.html#isakmpd>July 5, 2002:
           Receiving IKE payloads out of sequence can cause isakmpd(8) to
           crash.</a>
 <li><a href=errata.html#ktrace>June 27, 2002:  <li><a href=errata.html#ktrace>June 27, 2002:
         The kernel would let any user ktrace set[ug]id processes.</a>          The kernel would let any user ktrace set[ug]id processes.</a>
 <li><a href=errata.html#modssl>June 26, 2002:  <li><a href=errata.html#modssl>June 26, 2002:
Line 239 
Line 253 
   
 <p>  <p>
 <ul>  <ul>
   <li><a href=errata30.html#ssl>July 30, 2002:
           Several remote buffer overflows can occur in the SSL2 server and SSL3
           client of the ssl(8) library, as in the ASN.1 parser code in the
           crypto(3) library, all of them being potentially remotely
           exploitable.</a>
   <li><a href=errata30.html#xdr>July 29, 2002:
           A buffer overflow can occur in the xdr_array(3) RPC code, leading to
           possible remote crash.</a>
   <li><a href=errata30.html#pppd>July 29, 2002:
           A race condition exists in the pppd(8) daemon which may cause it to
           alter the file permissions of an arbitrary file.</a>
   <li><a href=errata30.html#isakmpd>July 5, 2002:
           Receiving IKE payloads out of sequence can cause isakmpd(8) to
           crash.</a>
 <li><a href=errata30.html#ktrace>June 27, 2002:  <li><a href=errata30.html#ktrace>June 27, 2002:
         The kernel would let any user ktrace set[ug]id processes.</a>          The kernel would let any user ktrace set[ug]id processes.</a>
 <li><a href=errata30.html#resolver>June 25, 2002:  <li><a href=errata30.html#resolver>June 25, 2002:
Legend:
Removed from v.1.217  
changed lines
  Added in v.1.218