===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata66.html,v
retrieving revision 1.6
retrieving revision 1.7
diff -c -r1.6 -r1.7
*** www/errata66.html	2019/11/21 21:01:42	1.6
--- www/errata66.html	2019/12/04 11:11:35	1.7
***************
*** 179,184 ****
  A source code patch exists which remedies this problem.</a>
  <p>
  
  </ul>
  
! <hr>
--- 179,215 ----
  A source code patch exists which remedies this problem.</a>
  <p>
  
+ <li id="p009_mesaxlock">
+ <strong>009: SECURITY FIX: December 4, 2019</strong>
+ &nbsp; <i>All architectures</i>
+ <br>
+ Environment-provided paths are used for dlopen() in mesa, resulting in
+ escalation to the auth group in xlock(1).
+ <br>
+ <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/009_mesaxlock.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
+ <li id="p010_libcauth">
+ <strong>010: SECURITY FIX: December 4, 2019</strong>
+ &nbsp; <i>All architectures</i>
+ <br>
+ libc's authentication layer performed insufficient username validation.
+ <br>
+ <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/010_libcauth.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
+ <li id="p011_xenodm">
+ <strong>011: SECURITY FIX: December 4, 2019</strong>
+ &nbsp; <i>All architectures</i>
+ <br>
+ xenodm uses the libc authentication layer incorrectly.
+ <br>
+ <a href="https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/011_xenodm.patch.sig">
+ A source code patch exists which remedies this problem.</a>
+ <p>
+ 
  </ul>
  
! <HR>