===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.119
retrieving revision 1.120
diff -u -r1.119 -r1.120
--- www/security.html	1999/11/27 16:34:44	1.119
+++ www/security.html	1999/12/03 00:34:26	1.120
@@ -192,6 +192,11 @@
 <li><a href=errata.html#ifmedia>Nov 9, 1999: 
 	Any user could change interface media configurations
 	(patch included).</a>
+<li><a href=errata.html#sslUSA>Dec 2, 1999:
+	A buffer overflow in the RSAREF code included in the
+	USA version of libssl, is possibly exploitable in
+	httpd, ssh, or isakmpd, if SSL/RSA features are enabled.
+	(patch included).</a>
 </ul>
 
 <p>
@@ -480,7 +485,7 @@
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
 <br>
-<small>$OpenBSD: security.html,v 1.119 1999/11/27 16:34:44 deraadt Exp $</small>
+<small>$OpenBSD: security.html,v 1.120 1999/12/03 00:34:26 deraadt Exp $</small>
 
 </body>
 </html>