===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata57.html,v
retrieving revision 1.32
retrieving revision 1.33
diff -u -r1.32 -r1.33
--- www/errata57.html 2015/12/06 11:54:58 1.32
+++ www/errata57.html 2016/01/14 14:51:54 1.33
@@ -321,6 +321,19 @@
A source code patch exists which remedies this problem.
+
+022: SECURITY FIX: January 14, 2016
+ All architectures
+Experimental roaming code in the ssh client could be tricked by a hostile sshd
+server, potentially leaking key material. CVE-2016-077 and CVE-0216-078.
+
+Prevent this problem immediately by adding the line "UseRoaming no" to
+/etc/ssh/ssh_config.
+
+
+A source code patch exists which remedies this problem.
+
+