[Secure-testing-commits] r29956 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 10 19:25:16 UTC 2014
Author: carnil
Date: 2014-11-10 19:25:16 +0000 (Mon, 10 Nov 2014)
New Revision: 29956
Modified:
data/CVE/list
Log:
Add n/a for CVE-2014-8564/gnutls26
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-10 19:21:43 UTC (rev 29955)
+++ data/CVE/list 2014-11-10 19:25:16 UTC (rev 29956)
@@ -78,6 +78,7 @@
RESERVED
CVE-2014-8564 (Denial of service in GnuTLS 3 when printing elliptic curves parameters)
- gnutls28 <unfixed>
+ - gnutls26 <not-affected> (Vulnerable code not present; no support for ECC)
NOTE: Upstream patch https://gitorious.org/gnutls/gnutls/commit/7429872b74c8216bbf15e241e47aba94369ef083
NOTE: http://www.gnutls.org/security.html#GNUTLS-SA-2014-5
NOTE: in experimental fixed in 3.3.10-1
More information about the Secure-testing-commits
mailing list