[Secure-testing-commits] r13184 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Mon Nov 2 19:35:44 UTC 2009


Author: jmm-guest
Date: 2009-11-02 19:35:43 +0000 (Mon, 02 Nov 2009)
New Revision: 13184

Modified:
   data/CVE/list
Log:
mutt not-affected


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-11-02 18:54:41 UTC (rev 13183)
+++ data/CVE/list	2009-11-02 19:35:43 UTC (rev 13184)
@@ -160,7 +160,8 @@
 CVE-2009-3767 (libraries/libldap/tls_o.c in OpenLDAP, when OpenSSL is used, does not ...)
 	- openldap <unfixed> (medium; bug #553432)
 CVE-2009-3766 (mutt_ssl.c in mutt 1.5.16, when OpenSSL is used, does not verify the ...)
-	- mutt <unfixed> (medium; bug #553433)
+	- mutt <not-affected> (uses GnuTLS and not OpenSSL)
+	NOTE: our mutt is linked against gnutls, bug #553433
 CVE-2009-3765 (mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not ...)
 	- mutt <not-affected> (uses GnuTLS and not OpenSSL)
 	NOTE: our mutt is linked against gnutls




More information about the Secure-testing-commits mailing list