[Secure-testing-commits] r26815 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun May 4 05:01:46 UTC 2014


Author: carnil
Date: 2014-05-04 05:01:28 +0000 (Sun, 04 May 2014)
New Revision: 26815

Modified:
   data/CVE/list
Log:
Add note for liblwp-protocol-https-perl issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-04 04:59:28 UTC (rev 26814)
+++ data/CVE/list	2014-05-04 05:01:28 UTC (rev 26815)
@@ -3,6 +3,7 @@
 CVE-2014-XXXX [HTTPS_CA_DIR or HTTPS_CA_FILE disables peer certificate verification for IO::Socket::SSL]
 	- liblwp-protocol-https-perl <unfixed> (bug #746579)
 	[wheezy] - liblwp-protocol-https-perl <not-affected> (Introduced by bcc46ce2dab53d2e2baa583f2243d6fc7d36dcc8 in 6.04)
+	NOTE: Introduced by https://github.com/dagolden/lwp-protocol-https/commit/bcc46ce2dab53d2e2baa583f2243d6fc7d36dcc8
 CVE-2014-XXXX
 	- lxml <unfixed> (bug #746812)
 	NOTE: http://lxml.de/3.3/changes-3.3.5.html




More information about the Secure-testing-commits mailing list