[Secure-testing-commits] r26456 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Apr 7 19:51:38 UTC 2014
Author: carnil
Date: 2014-04-07 19:51:38 +0000 (Mon, 07 Apr 2014)
New Revision: 26456
Modified:
data/CVE/list
Log:
Add openssl issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-07 19:00:10 UTC (rev 26455)
+++ data/CVE/list 2014-04-07 19:51:38 UTC (rev 26456)
@@ -6791,8 +6791,13 @@
RESERVED
CVE-2014-0161
RESERVED
-CVE-2014-0160
+CVE-2014-0160 [OpenSSL 1.0.1 TLS/DTLS hearbeat information disclosure]
RESERVED
+ - openssl <unfixed>
+ [squeeze] - openssl <not-affected> (vulnerable code introduced in upstream commit 4817504)
+ NOTE: fix: http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=96db902
+ NOTE: http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=4817504
+ NOTE: http://www.openssl.org/news/secadv_20140407.txt
CVE-2014-0159
RESERVED
CVE-2014-0158
More information about the Secure-testing-commits
mailing list