[Secure-testing-commits] r22293 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri May 17 10:52:12 UTC 2013
Author: carnil
Date: 2013-05-17 10:52:12 +0000 (Fri, 17 May 2013)
New Revision: 22293
Modified:
data/CVE/list
Log:
add fixed version for openvpn/CVE-2013-2061
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-17 07:24:12 UTC (rev 22292)
+++ data/CVE/list 2013-05-17 10:52:12 UTC (rev 22293)
@@ -3305,7 +3305,7 @@
RESERVED
CVE-2013-2061 [use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt]
RESERVED
- - openvpn <unfixed> (low; bug #707329)
+ - openvpn 2.3.1-1 (low; bug #707329)
[squeeze] - openvpn <no-dsa> (Minor issue)
[wheezy] - openvpn <no-dsa> (Minor issue)
NOTE: https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-f375aa67cc
More information about the Secure-testing-commits
mailing list