===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata55.html,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -r1.14 -r1.15
--- www/errata55.html 2014/05/02 17:43:48 1.14
+++ www/errata55.html 2014/05/24 09:50:42 1.15
@@ -128,6 +128,21 @@
A source code patch exists which remedies this problem.
+
+006: SECURITY FIX: May 24, 2014
+ All architectures with X server
+X Font Service Protocol & Font metadata file handling issues in libXfont
+
+- CVE-2014-0209: integer overflow of allocations in font metadata file parsing
+
- CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies
+
- CVE-2014-0211: integer overflows calculating memory needs for xfs replies
+
+Please see the advisory for more information.
+
+
+A source code patch exists which remedies this problem.
+
+