Hi The used patch took into account as well the fixed from upstream bugs 56 and 57, which correspond to CVE-2016-3981 and CVE-2016-3982. At the time of writing those two CVEs were not yet assigned.
So once accepted into the archive, I will update as well the information for those CVEs. Regards, Salvatore
