[Secure-testing-commits] r29421 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2014-10-15 18:39:23 +0000 (Wed, 15 Oct 2014)
New Revision: 29421

Modified:
   data/CVE/list
Log:
openssl fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-10-15 18:36:35 UTC (rev 29420)
+++ data/CVE/list	2014-10-15 18:39:23 UTC (rev 29421)
@@ -10390,13 +10390,13 @@
 	RESERVED
 CVE-2014-3568 [Build option no-ssl3 is incomplete]
 	RESERVED
-	- openssl <unfixed>
+        - openssl 1.0.1j-1
 CVE-2014-3567 [Session Ticket Memory Leak]
 	RESERVED
-	- openssl <unfixed>
+        - openssl 1.0.1j-1
 CVE-2014-3566 [POODLE attack against SSLv3]
 	RESERVED
-	- openssl <unfixed>
+        - openssl 1.0.1j-1
 	- nss <unfixed>
 	- gnutls26 <unfixed>
 	- gnutls28 <unfixed>
@@ -10589,7 +10589,7 @@
 	TODO: needs to check the others rails versions
 CVE-2014-3513 [SRTP Memory Leak]
 	RESERVED
-        - openssl <unfixed>
+        - openssl 1.0.1j-1
         [squeeze] - openssl <not-affected> (DLTS SRTP introduced in 1.0.1)
 CVE-2014-3512 (Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP ...)
 	{DSA-2998-1}