===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata65.html,v
retrieving revision 1.18
retrieving revision 1.19
diff -u -r1.18 -r1.19
--- www/errata65.html 2019/11/21 21:01:42 1.18
+++ www/errata65.html 2019/12/04 11:11:35 1.19
@@ -297,6 +297,37 @@
A source code patch exists which remedies this problem.
+
+020: SECURITY FIX: December 4, 2019
+ All architectures
+
+Environment-provided paths are used for dlopen() in mesa, resulting in
+escalation to the auth group in xlock(1).
+
+
+A source code patch exists which remedies this problem.
+
+
+
+021: SECURITY FIX: December 4, 2019
+ All architectures
+
+libc's authentication layer performed insufficient username validation.
+
+
+A source code patch exists which remedies this problem.
+
+
+
+022: SECURITY FIX: December 4, 2019
+ All architectures
+
+xenodm uses the libc authentication layer incorrectly.
+
+
+A source code patch exists which remedies this problem.
+
+