[Secure-testing-commits] r21274 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Thu Feb 14 14:26:08 UTC 2013
Author: thijs
Date: 2013-02-14 14:26:08 +0000 (Thu, 14 Feb 2013)
New Revision: 21274
Modified:
data/CVE/list
Log:
lighttpd ssl client reneg fixed in 1.4.30 already
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-14 07:21:04 UTC (rev 21273)
+++ data/CVE/list 2013-02-14 14:26:08 UTC (rev 21274)
@@ -51608,6 +51608,7 @@
- zorp 3.9.2-1
[squeeze] - zorp <no-dsa> (Minor issue)
[lenny] - zorp <no-dsa> (Minor issue)
+ - lighttpd 1.4.30-1
NOTE: for any of the currently unfixed implementations, you can solve the problem by disabling renegotiation
NOTE: the following implement RFC 5746:
NOTE: - openssl 0.9.8m-1
More information about the Secure-testing-commits
mailing list