[Secure-testing-commits] r24924 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Dec 29 07:58:04 UTC 2013
Author: jmm
Date: 2013-12-29 07:58:04 +0000 (Sun, 29 Dec 2013)
New Revision: 24924
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
openssl non-issue, take openssl DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-28 21:16:18 UTC (rev 24923)
+++ data/CVE/list 2013-12-29 07:58:04 UTC (rev 24924)
@@ -3978,7 +3978,8 @@
CVE-2009-5136 (The policy definition evaluator in Condor before 7.4.2 does not ...)
- condor <not-affected> (Fixed before initial upload)
CVE-2007-6755 (The NIST SP 800-90A default statement of the Dual Elliptic Curve ...)
- TODO: check
+ - openssl <unfixed> (unimportant)
+ NOTE: Unused/broken in OpenSSL, see http://marc.info/?l=openssl-announce&m=138747119822324&w=2
CVE-2013-6243 (SQL injection vulnerability in the Landing Pages plugin 1.2.3, before ...)
NOT-FOR-US: WordPress Landing Pages Plugin
CVE-2013-6167
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2013-12-28 21:16:18 UTC (rev 24923)
+++ data/dsa-needed.txt 2013-12-29 07:58:04 UTC (rev 24924)
@@ -55,7 +55,7 @@
--
openjdk7/stable (jmm)
--
-openssl
+openssl (jmm)
Proposed package for wheezy-security at http://people.debian.org/~kroeckx/openssl/
--
openswan
More information about the Secure-testing-commits
mailing list