===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata58.html,v
retrieving revision 1.19
retrieving revision 1.20
diff -u -r1.19 -r1.20
--- www/errata58.html	2016/04/24 20:08:48	1.19
+++ www/errata58.html	2016/05/03 14:37:57	1.20
@@ -218,6 +218,24 @@
 A source code patch exists which remedies this problem.</a>
 <p>
 
+<li id="013_crypto">
+<font color="#009000"><strong>013: SECURITY FIX: May 3, 2016</strong></font>
+&nbsp; <i>All architectures</i><br>
+Fix issues in the libcrypto library.
+Refer to <a href="https://www.openssl.org/news/secadv/20160503.txt">the OpenSSL advisory</a>.
+<ul>
+<li>Memory corruption in the ASN.1 encoder (CVE-2016-2108)
+<li>Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)
+<li>EVP_EncodeUpdate overflow (CVE-2016-2105)
+<li>EVP_EncryptUpdate overflow (CVE-2016-2106)
+<li>ASN.1 BIO excessive memory allocation (CVE-2016-2109)
+</ul>
+<br>
+<a href="http://ftp.openbsd.org/pub/OpenBSD/patches/5.8/common/013_crypto.patch.sig">
+A source code patch exists which remedies this problem.</a>
+<p>
+
+
 </ul>
 
 <hr>