[Secure-testing-commits] r29902 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 7 17:07:34 UTC 2014
Author: jmm
Date: 2014-11-07 17:07:34 +0000 (Fri, 07 Nov 2014)
New Revision: 29902
Modified:
data/CVE/list
Log:
sslv3 disabled in polarssl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-07 16:55:00 UTC (rev 29901)
+++ data/CVE/list 2014-11-07 17:07:34 UTC (rev 29902)
@@ -259,7 +259,6 @@
- linux <unfixed>
- linux-2.6 <removed>
NOTE: References in http://www.openwall.com/lists/oss-security/2014/10/30/7
- TODO: check affected releases
CVE-2014-8517 [ftp(1) can be made execute arbitrary commands by malicious webserver]
RESERVED
- tnftp 20130505-2 (low; bug #767171)
@@ -11854,7 +11853,7 @@
- openjdk-6 <unfixed>
- openjdk-7 <unfixed>
- openjdk-8 <unfixed>
- - polarssl <unfixed>
+ - polarssl 1.3.9-2
- surf <unfixed> (unimportant)
- tlslite <removed>
[wheezy] - tlslite <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list