===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.212
retrieving revision 1.213
diff -u -r1.212 -r1.213
--- www/security.html 2002/06/26 06:10:47 1.212
+++ www/security.html 2002/06/26 19:07:53 1.213
@@ -194,8 +194,15 @@
+- June 26, 2002:
+ A buffer overflow can occur in the .htaccess parsing code in
+ mod_ssl httpd module, leading to possible remote crash.
- June 25, 2002:
A potential buffer overflow in the DNS resolver has been found.
+
- June 24, 2002:
+ All versions of OpenSSH's sshd between 2.9.9 and 3.3 contain an
+ input validation error that can result in an integer overflow and
+ privilege escalation.
- June 19, 2002:
A buffer overflow can occur during the interpretation of chunked
encoding in httpd(8), leading to possible remote crash.
@@ -232,6 +239,16 @@
- June 25, 2002:
A potential buffer overflow in the DNS resolver has been found.
+
- June 24, 2002:
+ All versions of OpenSSH's sshd between 2.9.9 and 3.3 contain an
+ input validation error that can result in an integer overflow and
+ privilege escalation.
+
- June 24, 2002:
+ A buffer overflow can occur in the .htaccess parsing code in
+ mod_ssl httpd module, leading to possible remote crash.
+
- June 19, 2002:
+ A buffer overflow can occur during the interpretation of chunked
+ encoding in httpd(8), leading to possible remote crash.
- May 8, 2002:
A race condition exists that could defeat the kernel's
protection of fd slots 0-2 for setuid processes.
@@ -855,7 +872,7 @@
www@openbsd.org
-$OpenBSD: security.html,v 1.212 2002/06/26 06:10:47 millert Exp $
+$OpenBSD: security.html,v 1.213 2002/06/26 19:07:53 miod Exp $