[Secure-testing-commits] r28485 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 27 11:34:04 UTC 2014
Author: carnil
Date: 2014-08-27 11:34:04 +0000 (Wed, 27 Aug 2014)
New Revision: 28485
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2014-3603
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-27 11:15:38 UTC (rev 28484)
+++ data/CVE/list 2014-08-27 11:34:04 UTC (rev 28485)
@@ -4417,10 +4417,9 @@
NOTE: http://lists.juliusdavies.ca/pipermail/not-yet-commons-ssl-juliusdavies.ca/2014-August/000832.html
CVE-2014-3603 [HTTPS Connections Via HTTP Resources Do Not Perform Hostname Verification]
RESERVED
- - libopensaml2-java <undetermined>
+ - libopensaml2-java <unfixed> (bug #759470)
NOTE: http://shibboleth.net/community/advisories/secadv_20140813.txt
NOTE: http://svn.shibboleth.net/view/java-opensaml2/branches/REL_2/src/main/java/org/opensaml/DefaultBootstrap.java?r1=1622&r2=1666&pathrev=1666
- TODO: check
CVE-2014-3602
RESERVED
NOT-FOR-US: OpenShift
More information about the Secure-testing-commits
mailing list