===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata66.html,v
retrieving revision 1.12
retrieving revision 1.13
diff -c -r1.12 -r1.13
*** www/errata66.html	2020/01/15 20:15:10	1.12
--- www/errata66.html	2020/01/28 21:30:52	1.13
***************
*** 272,277 ****
--- 272,299 ----
  A source code patch exists which remedies this problem.</a>
  <p>
  
+ <li id="p018_smtpd_tls">
+ <strong>018: RELIABILITY FIX: January 30, 2020</strong>
+ &nbsp; <i>All architectures</i>
+ <br>
+ smtpd can crash on opportunistic TLS downgrade, causing a denial of service.
+ <br>
+ <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/018_smtpd_tls.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
+ <li id="p019_smtpd_exec">
+ <strong>019: SECURITY FIX: January 30, 2020</strong>
+ &nbsp; <i>All architectures</i>
+ <br>
+ An incorrect check allows an attacker to trick mbox delivery into executing
+ arbitrary commands as root and lmtp delivery into executing arbitrary commands
+ as an unprivileged user.
+ <br>
+ <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/019_smtpd_exec.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
  </ul>
  
  <HR>