[Secure-testing-commits] r30415 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 28 19:38:33 UTC 2014
Author: jmm
Date: 2014-11-28 19:38:33 +0000 (Fri, 28 Nov 2014)
New Revision: 30415
Modified:
data/CVE/list
Log:
filed bug for erlang-ssl
old tnef issue also affects claws-mail
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-28 19:35:08 UTC (rev 30414)
+++ data/CVE/list 2014-11-28 19:38:33 UTC (rev 30415)
@@ -13746,7 +13746,7 @@
- tlslite <removed>
[wheezy] - tlslite <no-dsa> (Minor issue)
- uzbl <unfixed> (unimportant)
- - erlang <unfixed>
+ - erlang <unfixed> (bug #771359)
NOTE: https://www.openssl.org/~bodo/ssl-poodle.pdf
NOTE: http://googleonlinesecurity.blogspot.fr/2014/10/this-poodle-bites-exploiting-ssl-30.html
NOTE: This is only about the SSLv3 CBC padding, not about any downgrade attack or support for the fallback SCSV
@@ -53971,6 +53971,7 @@
- claws-mail-extra-plugins <unfixed> (low)
[squeeze] - claws-mail-extra-plugins <no-dsa> (Minor issue)
[wheezy] - claws-mail-extra-plugins <no-dsa> (Minor issue)
+ - claws-mail <unfixed> (bug #771360)
CVE-2010-5108 [Trac Ticket Modification Workflow Permission Restriction Bypass]
RESERVED
- trac 0.11.7-1 (bug #573260)
More information about the Secure-testing-commits
mailing list