===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata55.html,v
retrieving revision 1.14
retrieving revision 1.15
diff -c -r1.14 -r1.15
*** www/errata55.html 2014/05/02 17:43:48 1.14
--- www/errata55.html 2014/05/24 09:50:42 1.15
***************
*** 128,133 ****
--- 128,148 ----
A source code patch exists which remedies this problem.
+
+ 006: SECURITY FIX: May 24, 2014
+ All architectures with X server
+ X Font Service Protocol & Font metadata file handling issues in libXfont
+
+ - CVE-2014-0209: integer overflow of allocations in font metadata file parsing
+
- CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies
+
- CVE-2014-0211: integer overflows calculating memory needs for xfs replies
+
+ Please see the advisory for more information.
+
+
+ A source code patch exists which remedies this problem.
+
+