===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata57.html,v
retrieving revision 1.35
retrieving revision 1.36
diff -u -r1.35 -r1.36
--- www/errata57.html	2016/02/20 14:18:42	1.35
+++ www/errata57.html	2016/03/10 11:57:24	1.36
@@ -335,6 +335,19 @@
 A source code patch exists which remedies this problem.</a>
 <p>
 
+<li id="023_sshd">
+<font color="#009000"><strong>023: SECURITY FIX: March 10, 2016</strong></font>
+&nbsp; <i>All architectures</i><br>
+<a href="http://www.openssh.com/txt/x11fwd.adv">
+Lack of credential sanitization allows injection of commands to xauth(1).</a>
+<br>
+Prevent this problem immediately by not using the "X11Forwarding" feature
+(which is disabled by default)
+<br>
+<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.7/common/023_sshd.patch.sig">
+A source code patch exists which remedies this problem.</a>
+<p>
+
 </ul>
 
 <hr>