Security bulletins 2014-001 and 2014-002 published

Hi everybody,

as you hopefully all know, the last patch releases fixed two security issues. These issues were documented in security bulletins 2014-001 and 2014-002, got a CVE identifier as well as a CVSS and were published some minutes before like announced:

[li]all NDA owners and close partners have been informed before the patch release about these issues
[/li][li]both issues will be reported to the most important security databases