===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata54.html,v
retrieving revision 1.33
retrieving revision 1.34
diff -u -r1.33 -r1.34
--- www/errata54.html	2014/09/06 13:59:35	1.33
+++ www/errata54.html	2014/09/30 22:26:48	1.34
@@ -234,6 +234,17 @@
 A source code patch exists which remedies this problem.</a>
 <p>
 
+<li><a name="015_nginx"></a>
+<font color="#009000"><strong>015: SECURITY FIX: October 1, 2014</strong></font>
+&nbsp; <i>All architectures</i><br>
+nginx can reuse cached SSL sessions in unrelated contexts, allowing virtual
+host confusion attacks in some configurations.
+This issue was assigned CVE-2014-3616.
+<br>
+<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.4/common/015_nginx.patch">
+A source code patch exists which remedies this problem.</a>
+<p>
+
 </ul>
 
 </body>