[Secure-testing-commits] r29438 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Oct 17 04:56:17 UTC 2014
Author: carnil
Date: 2014-10-17 04:56:17 +0000 (Fri, 17 Oct 2014)
New Revision: 29438
Modified:
data/CVE/list
Log:
Add end-of-life tags for iceweasel and icedove
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-17 04:56:10 UTC (rev 29437)
+++ data/CVE/list 2014-10-17 04:56:17 UTC (rev 29438)
@@ -10822,7 +10822,9 @@
- gnutls26 <unfixed>
- gnutls28 <unfixed>
[wheezy] - iceweasel <unfixed>
+ [squeeze] - iceweasel <end-of-life>
[wheezy] - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
NOTE: https://www.openssl.org/~bodo/ssl-poodle.pdf
NOTE: http://googleonlinesecurity.blogspot.fr/2014/10/this-poodle-bites-exploiting-ssl-30.html
NOTE: workaround is to disable SSLv3 in application configurations when possible
More information about the Secure-testing-commits
mailing list