===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata73.html,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- www/errata73.html 2023/07/12 12:50:01 1.6
+++ www/errata73.html 2023/07/19 14:13:13 1.7
@@ -197,6 +197,20 @@
A source code patch exists which remedies this problem.
+
+010: SECURITY FIX: July 19, 2023
+ All architectures
+
+In ssh-agent(1)'s PKCS#11 provider support, remote execution was
+possible due to controllable access in low-quality libraries. In
+addition to fixing this, the ability to remotely load PKCS#11
+libraries is now disabled by default (re-enable with
+'-Oallow-remote-pkcs11').
+
+
+A source code patch exists which remedies this problem.
+
+