[Secure-testing-commits] r14352 - data/CVE
Florian Weimer
fw at alioth.debian.org
Mon Mar 29 18:21:35 UTC 2010
Author: fw
Date: 2010-03-29 18:21:28 +0000 (Mon, 29 Mar 2010)
New Revision: 14352
Modified:
data/CVE/list
Log:
CVE-2009-3245: openssl; revert previous change (sorry)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-29 17:08:32 UTC (rev 14351)
+++ data/CVE/list 2010-03-29 18:21:28 UTC (rev 14352)
@@ -6858,9 +6858,8 @@
- xulrunner <unfixed> (unimportant)
NOTE: browser denial-of-services are unimportant
CVE-2009-3245 (OpenSSL before 0.9.8m does not check for a NULL return value from ...)
- - openssl 0.9.8n-1 (low)
- [lenny] - openssl <not-affected> (only 0.9.8m is affected with 16 bit shorts)
- NOTE: http://www.openssl.org/news/secadv_20100324.txt
+ - openssl 0.9.8m-1 (low)
+ [lenny] - openssl <no-dsa> (minor issue)
CVE-2009-3244 (Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe ...)
NOT-FOR-US: Adobe ShockWave Player
CVE-2009-3243 (Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and ...)
More information about the Secure-testing-commits
mailing list