[Secure-testing-commits] r22799 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2013-06-30 16:15:35 +0000 (Sun, 30 Jun 2013)
New Revision: 22799

Modified:
   data/CVE/list
Log:
add bugnumber for ruby1.8/ruby1.9.1: CVE-2013-4073

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-06-29 21:32:09 UTC (rev 22798)
+++ data/CVE/list	2013-06-30 16:15:35 UTC (rev 22799)
@@ -1361,12 +1361,11 @@
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=8725
 CVE-2013-4073 [Hostname check bypassing vulnerability in SSL client]
 	RESERVED
-	- ruby1.8 <unfixed>
-	- ruby1.9.1 <unfixed>
+	- ruby1.8 <unfixed> (bug #714541)
+	- ruby1.9.1 <unfixed> (bug #714543)
 	NOTE: http://www.ruby-lang.org/en/news/2013/06/27/hostname-check-bypassing-vulnerability-in-openssl-client-cve-2013-4073/
 	NOTE: https://github.com/ruby/ruby/commit/2669b84d407ab431e965145c827db66c91158f89 (1.9.3)
 	NOTE: https://github.com/ruby/ruby/commit/961bf7496ded3acfe847cf56fa90bbdcfd6e614f (1.8.7)
-	TODO: check, report to BTS
 CVE-2013-4072
 	RESERVED
 CVE-2013-4071