[Secure-testing-commits] r23756 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Sat Sep 21 05:36:50 UTC 2013


Author: carnil
Date: 2013-09-21 05:36:50 +0000 (Sat, 21 Sep 2013)
New Revision: 23756

Modified:
   data/CVE/list
Log:
Add fixed version for unstable pyopenssl (CVE-2013-4314)

NOTE: packages for wheezy also prepared, squeeze need a bit more work
still.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-20 21:40:47 UTC (rev 23755)
+++ data/CVE/list	2013-09-21 05:36:50 UTC (rev 23756)
@@ -3580,7 +3580,7 @@
 	- python-django 1.5.3-1 (bug #722605)
 CVE-2013-4314 [hostname check bypassing vulnerability]
 	RESERVED
-	- pyopenssl <unfixed> (bug #722055)
+	- pyopenssl 0.13-2.1 (bug #722055)
 CVE-2013-4313 (Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and ...)
 	- moodle 2.5.2-1
 	[squeeze] - moodle <not-affected>




More information about the Secure-testing-commits mailing list