[Secure-testing-commits] r20329 - data/CVE

[Henri Salo]

Author: fgeek-guest
Date: 2012-10-11 06:07:43 +0000 (Thu, 11 Oct 2012)
New Revision: 20329

Modified:
   data/CVE/list
Log:
ssmtp issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-10-11 06:03:26 UTC (rev 20328)
+++ data/CVE/list	2012-10-11 06:07:43 UTC (rev 20329)
@@ -1,3 +1,6 @@
+CVE-2012-XXXX [ssmpt doesn't validate server TLS certificates]
+	- ssmtp <unfixed> (bug #662960)
+	NOTE: http://www.openwall.com/lists/oss-security/2012/10/10/6
 CVE-2012-5353 (Eduserv allows remote attackers to forge messages and bypass ...)
 	TODO: check
 CVE-2012-5352 (Java Open Single Sign-On Project Home (JOSSO) allows remote attackers ...)