[Secure-testing-commits] r21414 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Mon Feb 25 06:10:59 UTC 2013
Author: carnil
Date: 2013-02-25 06:10:59 +0000 (Mon, 25 Feb 2013)
New Revision: 21414
Modified:
data/CVE/list
Log:
update entry for CVE-2013-0308, git-imap-send and SSL support
See #434599, SSL support is not enabled for git in Debian
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-24 21:14:27 UTC (rev 21413)
+++ data/CVE/list 2013-02-25 06:10:59 UTC (rev 21414)
@@ -4702,8 +4702,9 @@
- linux-2.6 <removed>
CVE-2013-0308 [Incorrect IMAP server's SSL x509.v3 certificate validation in git-imap-send command]
RESERVED
- - git <unfixed> (bug #701586)
+ - git <not-affected> (OpenSSL support is not enabled in Debian, see bug #701586)
NOTE: http://marc.info/?l=git&m=136134619013145&w=2
+ NOTE: Further reference about SSL support in imap-send #434599 needs to be adressed first
CVE-2013-0307 [XSS vulnerability]
RESERVED
- owncloud <unfixed> (bug #701115)
More information about the Secure-testing-commits
mailing list