[Secure-testing-commits] r12828 - data/CVE

Wed Sep 16 17:41:04 UTC 2009

Author: jmm-guest
Date: 2009-09-16 17:41:04 +0000 (Wed, 16 Sep 2009)
New Revision: 12828

Modified:
   data/CVE/list
Log:
record etch fixes


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-09-16 14:34:56 UTC (rev 12827)
+++ data/CVE/list	2009-09-16 17:41:04 UTC (rev 12828)
@@ -5571,10 +5571,12 @@
 CVE-2009-1387 (The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in ...)
 	- openssl 0.9.8k-2 (low; bug #532037)
 	[lenny] - openssl 0.9.8g-15+lenny3
+	[etch] - openssl 0.9.8c-4etch9
 	- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
 CVE-2009-1386 (ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause ...)
 	- openssl 0.9.8k-1 (low; bug #532037)
 	[lenny] - openssl 0.9.8g-15+lenny3
+	[etch] - openssl 0.9.8c-4etch9
 	- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
 CVE-2009-1385 (Integer underflow in the e1000_clean_rx_irq function in ...)
 	{DSA-1865-1 DSA-1844-1}
@@ -5594,14 +5596,17 @@
 CVE-2009-1379 (Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment ...)
 	- openssl 0.9.8k-1 (low; bug #530400)
 	[lenny] - openssl 0.9.8g-15+lenny3
+	[etch] - openssl 0.9.8c-4etch9
 	- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
 CVE-2009-1378 (Multiple memory leaks in the dtls1_process_out_of_seq_message function ...)
 	- openssl 0.9.8k-1 (low; bug #530400)
 	[lenny] - openssl 0.9.8g-15+lenny3
+	[etch] - openssl 0.9.8c-4etch9
 	- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
 CVE-2009-1377 (The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and ...)
 	- openssl 0.9.8k-1 (low; bug #530400)
 	[lenny] - openssl 0.9.8g-15+lenny3
+	[etch] - openssl 0.9.8c-4etch9
 	- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
 CVE-2009-1376 (Multiple integer overflows in the msn_slplink_process_msg functions in ...)
 	{DSA-1805-1}


