From 5be2d27ccad1dcba1b1ec6535b1bd963748bb857 Mon Sep 17 00:00:00 2001
From: Remko Lodder <remko@FreeBSD.org>
Date: Tue, 19 Jul 2005 19:10:42 +0000
Subject: [PATCH] Update the OS Comparison article.

PR:		www/82761
Submitted by:	Kevin Kinsey <kdk at daleco dot biz>
---
 en/marketing/os-comparison.sgml | 93 +++++++++++++++++++++++----------
 1 file changed, 66 insertions(+), 27 deletions(-)

diff --git a/en/marketing/os-comparison.sgml b/en/marketing/os-comparison.sgml
index 1111f222b9..cb8ad9e477 100644
--- a/en/marketing/os-comparison.sgml
+++ b/en/marketing/os-comparison.sgml
@@ -1,6 +1,6 @@
 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" [
 <!ENTITY base CDATA "..">
-<!ENTITY date "$FreeBSD: www/en/marketing/os-comparison.sgml,v 1.3 2005/05/09 16:06:12 murray Exp $">
+<!ENTITY date "$FreeBSD: www/en/marketing/os-comparison.sgml,v 1.4 2005/06/06 21:13:07 murray Exp $">
 <!ENTITY email 'marketing'>
 <!ENTITY title "FreeBSD vs. Linux vs. Windows 2000">
 <!ENTITY % includes SYSTEM "../includes.sgml"> %includes;
@@ -470,37 +470,76 @@ alerts, does research in wide-networked computing, and develops
 information and training to help improve security at Internet
 sites.<p>
 
-<p><strong>CERT Advisories in 2000 that affected Linux:</strong></p>
+<p><strong>CERT Advisories for 2004-early 2005, all operating
+  systems:</strong></p>
 <ul>
-  <li>CA-2000-22 - Input Validation Problems in LPRng</li>
-  <li>CA-2000-21 - Denial-of-Service Vulnerability in TCP/IP
-  Stacks</li>
-  <li>CA-2000-20 - Multiple Denial-of-Service Problems in ISC BIND</li>
-  <li>CA-2000-17 - Input Validation Problem in rpc.statd</li>
-  <li>CA-2000-13 - Two Input Validation Problems in FTPD</li>
-  <li>CA-2000-06 - Multiple Buffer Overflows in Kerberos Authenticated
-  Services</li>
-  <li>CA-2000-03 - Continuing Compromises of DNS servers</li>
-</ul>
-
-<p><strong>CERT Advisories in 2000 that affected Windows:</strong></p>
-<ul>
-  <li>CA-2000-16 - Microsoft 'IE Script'/Access/OBJECT Tag
-  Vulnerability</li>
-  <li>CA-2000-14 - Microsoft Outlook and Outlook Express Cache Bypass
-  Vulnerability</li>
-  <li>CA-2000-12 - HHCtrl ActiveX Control Allows Local Files to be
-  Executed</li>
-  <li>CA-2000-10 - Inconsistent Warning Messages in Internet
-  Explorer</li>
-  <li>CA-2000-07 - Microsoft Office 2000 UA ActiveX Control
-  Incorrectly Marked "Safe for Scripting"</li>
-  <li>CA-2000-04 - Love Letter Worm</li>
+  <li>2005-06-14 TA05-165A  Microsoft Windows and Internet Explorer
+    Vulnerabilities</li>
+  <li>2005-05-16 TA05-136A  Apple Mac OS X is affected by multiple
+    vulnerabilities</li>
+  <li>2005-04-27 TA05-117A  Oracle Products Contain Multiple
+    Vulnerabilities</li>
+  <li>2005-04-12 TA05-102A  Multiple Vulnerabilities in Microsoft
+    Windows Components</li>
+  <li>2005-02-08 TA05-039A  Multiple Vulnerabilities in Microsoft
+    Windows Components</li>
+  <li>2005-01-26 TA05-026A  Multiple Denial of Service Vulnerablities
+    in Cisco IOS</li>
+  <li>2005-01-12 TA05-012B  Microsoft Windows HTML Help ActiveX Control
+    Cross-Domain Vulnerability</li>
+  <li>2005-01-12 TA05-012A  Multiple Vulnerabilities in Microsoft
+    Windows Icon and Cursor Processing</li>
+  <li>2004-12-21 TA04-356A  Exploitation of phpBB highlight parameter
+    vulnerability</li>
+  <li>2004-12-01 TA04-336A  Update Available for Microsoft Internet
+    Explorer HTML Elements Vulnerability</li>
+  <li>2004-11-11 TA04-316A  Cisco IOS Input Queue Vulnerability</li>
+  <li>2004-11-10 TA04-315A  Buffer Overflow in Microsoft Internet
+    Explorer</li>
+  <li>2004-10-19 TA04-293A  Multiple Vulnerabilities in Microsoft
+    Internet Explorer</li>
+  <li>2004-09-17 TA04-261A  Multiple Vulnerabilities in Mozilla
+    Products</li>
+  <li>2004-09-16 TA04-260A  Microsoft Windows JPEG component buffer
+    overflow</li>
+  <li>2004-09-03 TA04-247A  Vulnerabilities in MIT Kerberos 5</li>
+  <li>2004-09-01 TA04-245A  Multiple Vulnerabilities in Oracle
+    Products</li>
+  <li>2004-08-04 TA04-217A  Multiple Vulnerabilities in libpng</li>
+  <li>2004-07-30 TA04-212A  Critical Vulnerabilities in Microsoft
+    Windows</li>
+  <li>2004-07-14 TA04-196A  Multiple Vulnerabilities in Microsoft
+    Windows Components and Outlook Express</li>
+  <li>2004-07-02 TA04-184A  Internet Explorer Update to Disable
+    ADODB.Stream ActiveX Control</li>
+  <li>2004-06-22 TA04-174A  Multiple Vulnerabilities in ISC DHCP 3</li>
+  <li>2004-06-11 TA04-163A  Cross-Domain Redirect Vulnerability in
+    Internet Explorer</li>
+  <li>2004-06-08 TA04-160A  SQL Injection Vulnerabilities in Oracle
+    E-Business Suite</li>
+  <li>2004-05-26 TA04-147A  CVS Heap Overflow Vulnerability</li>
+  <li>2004-04-20 TA04-111B  Cisco IOS SNMP Message Handling
+    Vulnerability</li>
+  <li>2004-04-20 TA04-111A  Vulnerabilities in TCP</li>
+  <li>2004-04-13 TA04-104A  Multiple Vulnerabilities in Microsoft
+    Products</li>
+  <li>2004-04-08 TA04-099A  Cross-Domain Vulnerability in Outlook
+    Express MHTML Protocol Handler</li>
+  <li>2004-03-18 TA04-078A  Multiple Vulnerabilities in OpenSSL</li>
+  <li>2004-03-10 TA04-070A  Microsoft Outlook mailto URL Handling
+    Vulnerability</li>
+  <li>2004-02-10 TA04-041A  Multiple Vulnerabilities in Microsoft
+    ASN.1 Library</li>
+  <li>2004-02-05 TA04-036A  HTTP Parsing Vulnerabilities in Check
+    Point Firewall-1</li>
+  <li>2004-02-02 TA04-033A  Multiple Vulnerabilities in Microsoft
+    Internet Explorer</li>
+  <li>2004-01-28 TA04-028A  W32/MyDoom.B Virus</li>
 </ul>
 
 <p>For more information about CERT and potential security exploits for
 your operating system, please see <a
-href="http://www.cert.org">http://www.cert.org</a>.</p>
+href="http://www.us-cert.org/cas/techalerts/">http://www.us-cert.org/cas/techalerts/</a>.</p>
 
 <p>For more information about some of the enhanced security features
 of FreeBSD, please see <a