===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata58.html,v
retrieving revision 1.15
retrieving revision 1.16
diff -c -r1.15 -r1.16
*** www/errata58.html	2016/02/20 14:18:42	1.15
--- www/errata58.html	2016/03/10 11:57:24	1.16
***************
*** 191,196 ****
--- 191,209 ----
  A source code patch exists which remedies this problem.</a>
  <p>
  
+ <li id="011_sshd">
+ <font color="#009000"><strong>011: SECURITY FIX: March 10, 2016</strong></font>
+ &nbsp; <i>All architectures</i><br>
+ <a href="http://www.openssh.com/txt/x11fwd.adv">
+ Lack of credential sanitization allows injection of commands to xauth(1).</a>
+ <br>
+ Prevent this problem immediately by not using the "X11Forwarding" feature
+ (which is disabled by default)
+ <br>
+ <a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.8/common/011_sshd.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
  </ul>
  
  <hr>