http://www.openbsd.org/errata42.html OpenBSD 42 Errata en-us mike@erdelynet.com http://erdelynet.com/images/puffy96x83.gif http://www.openbsd.org/errata42.html 96 83 OpenBSD 42 Errata http://www.openbsd.org/errata42.html#014_pcb RELIABILITY All architectures July 29, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#013_bind SECURITY All architectures July 23, 2008 2nd revision, July 23, 2008
A vulnerability has been found with BIND. An attacker could use this vulnerability to poison the cache of a recursive resolving name server. CVE-2008-1447.
A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#012_xorg2 SECURITY All architectures July 15, 2008 RENDER Extension heap buffer overflow, RENDER Extension crash, RENDER Extension memory corruption, MIT-SHM arbitrary memory read, RECORD and Security extensions memory corruption. CVE-2008-2360, CVE-2008-2361, CVE-2008-2362, CVE-2008-1379, CVE-2008-1377.
A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#011_openssh2 SECURITY All architectures April 3, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#010_openssh SECURITY All architectures March 30, 2008 ForceCommand directive was in effect, allowing users with write access to this file to execute arbitrary commands. This behaviour was documented, but was an unsafe default and an extra hassle for administrators.
A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#009_ppp SECURITY All architectures March 7, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#008_ip6rthdr RELIABILITY All architectures February 25, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#007_tcprespond RELIABILITY All architectures February 22, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#006_xorg SECURITY All architectures February 8, 2008 2nd revision, February 10, 2008
Multiple vulnerabilities have been discovered in X.Org.
XFree86 Misc extension out of bounds array index, File existence disclosure, Xinput extension memory corruption, TOG-cup extension memory corruption, MIT-SHM and EVI extensions integer overflows, PCF Font parser buffer overflow. CVE-2007-5760, CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006.
A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#005_ifrtlabel RELIABILITY All architectures January 11, 2008 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#004_pf RELIABILITY All architectures November 27, 2007 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#003_i386_boot CD BOOT FAILURE ON OLDER COMPUTERS i386 only October 30, 2007 NOT required for this to work.)

1. Insert CD2 and tell your computer to boot it;
   
2. When the boot> prompt appears, stop the automatic boot by pressing the space bar;
   
3. Remove CD2 and insert CD1;
   
4. Erase the character you typed to stop the boot, type
   boot /4.2/i386/bsd.rd
   then press Enter.

]]> http://www.openbsd.org/errata42.html#002_openssl SECURITY All architectures October 10, 2007 A source code patch exists which remedies this problem.
]]> http://www.openbsd.org/errata42.html#001_dhcpd SECURITY All architectures October 8, 2007 A DHCP client that claimed to require a maximum message size less than the minimum IP MTU could cause dhcpd(8) to overwrite stack memory.
A source code patch exists which remedies this problem.
]]>