[Secure-testing-commits] r12828 - data/CVE
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Wed Sep 16 17:41:04 UTC 2009
Author: jmm-guest
Date: 2009-09-16 17:41:04 +0000 (Wed, 16 Sep 2009)
New Revision: 12828
Modified:
data/CVE/list
Log:
record etch fixes
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-09-16 14:34:56 UTC (rev 12827)
+++ data/CVE/list 2009-09-16 17:41:04 UTC (rev 12828)
@@ -5571,10 +5571,12 @@
CVE-2009-1387 (The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in ...)
- openssl 0.9.8k-2 (low; bug #532037)
[lenny] - openssl 0.9.8g-15+lenny3
+ [etch] - openssl 0.9.8c-4etch9
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1386 (ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause ...)
- openssl 0.9.8k-1 (low; bug #532037)
[lenny] - openssl 0.9.8g-15+lenny3
+ [etch] - openssl 0.9.8c-4etch9
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1385 (Integer underflow in the e1000_clean_rx_irq function in ...)
{DSA-1865-1 DSA-1844-1}
@@ -5594,14 +5596,17 @@
CVE-2009-1379 (Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment ...)
- openssl 0.9.8k-1 (low; bug #530400)
[lenny] - openssl 0.9.8g-15+lenny3
+ [etch] - openssl 0.9.8c-4etch9
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1378 (Multiple memory leaks in the dtls1_process_out_of_seq_message function ...)
- openssl 0.9.8k-1 (low; bug #530400)
[lenny] - openssl 0.9.8g-15+lenny3
+ [etch] - openssl 0.9.8c-4etch9
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1377 (The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and ...)
- openssl 0.9.8k-1 (low; bug #530400)
[lenny] - openssl 0.9.8g-15+lenny3
+ [etch] - openssl 0.9.8c-4etch9
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1376 (Multiple integer overflows in the msn_slplink_process_msg functions in ...)
{DSA-1805-1}
More information about the Secure-testing-commits
mailing list