version 1.270, 2004/01/22 20:05:49 |
version 1.271, 2004/02/05 22:03:24 |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata.html#sysvshm> February 5, 2004: |
|
A reference counting bug in shmat(2) could be used to write to |
|
kernel memory under certain circumstances.</a> |
<li><a href=errata.html#isakmpd>January 13, 2004: |
<li><a href=errata.html#isakmpd>January 13, 2004: |
Several message handling flaws in isakmpd(8) have been reported |
Several message handling flaws in isakmpd(8) have been reported |
by Thomas Walpuski. |
by Thomas Walpuski.</a> |
<li><a href=errata.html#ibcs2>November 17, 2003: |
<li><a href=errata.html#ibcs2>November 17, 2003: |
It may be possible for a local user to overrun the stack in |
It may be possible for a local user to overrun the stack in |
compat_ibcs2(8) and cause a kernel panic.</a> |
compat_ibcs2(8) and cause a kernel panic.</a> |
|
|
|
|
<p> |
<p> |
<ul> |
<ul> |
|
<li><a href=errata33.html#sysvshm> February 5, 2004: |
|
A reference counting bug in shmat(2) could be used to write to |
|
kernel memory under certain circumstances.</a> |
<li><a href=errata33.html#isakmpd>January 15, 2004: |
<li><a href=errata33.html#isakmpd>January 15, 2004: |
Several message handling flaws in isakmpd(8) have been reported |
Several message handling flaws in isakmpd(8) have been reported |
by Thomas Walpuski. |
by Thomas Walpuski.</a> |
<li><a href=errata33.html#ibcs2>November 17, 2003: |
<li><a href=errata33.html#ibcs2>November 17, 2003: |
It may be possible for a local user to execute arbitrary code |
It may be possible for a local user to execute arbitrary code |
resulting in escalation of privileges due to a stack overrun |
resulting in escalation of privileges due to a stack overrun |