[Secure-testing-commits] r3322 - data/CVE
Florian Weimer
fw at costa.debian.org
Thu Jan 19 14:29:14 UTC 2006
Author: fw
Date: 2006-01-19 14:29:08 +0000 (Thu, 19 Jan 2006)
New Revision: 3322
Modified:
data/CVE/list
Log:
CVE-2004-2531: gnutls11 fixed, gnutls12 not affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-01-19 14:25:51 UTC (rev 3321)
+++ data/CVE/list 2006-01-19 14:29:08 UTC (rev 3322)
@@ -4051,8 +4051,8 @@
CVE-2004-2532 (Serv-U FTP server before 5.1.0.0 has a default account and password ...)
NOT-FOR-US: Serv-U FTP Server
CVE-2004-2531 (X.509 Certificate Signature Verification in Gnu transport layer ...)
- - gnutls11 <unfixed> (bug #336006; low)
- TODO: Check, when this was fixed in gnutls12
+ - gnutls11 1.0.16-8 (bug #336006; low)
+ - gnutls12 <not-affected> (fixed before upload)
CVE-2004-2530 (Visual truncation vulnerability in Gadu-Gadu allows remote attackers ...)
NOT-FOR-US: Gadu-Gadu
TODO: Check, whether vulnerable code is shared with ekg
More information about the Secure-testing-commits
mailing list