[Secure-testing-commits] r29679 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Mon Oct 27 08:04:08 UTC 2014
Author: fgeek-guest
Date: 2014-10-27 08:04:08 +0000 (Mon, 27 Oct 2014)
New Revision: 29679
Modified:
data/CVE/list
Log:
CVE-2014-3566/znc
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-27 06:04:12 UTC (rev 29678)
+++ data/CVE/list 2014-10-27 08:04:08 UTC (rev 29679)
@@ -11427,6 +11427,7 @@
- uzbl <unfixed> (unimportant)
- webfs <unfixed>
- yaws <unfixed>
+ - znc <unfixed>
NOTE: https://www.openssl.org/~bodo/ssl-poodle.pdf
NOTE: http://googleonlinesecurity.blogspot.fr/2014/10/this-poodle-bites-exploiting-ssl-30.html
NOTE: This is only about the SSLv3 CBC padding, not about any downgrade attack or support for the fallback SCSV
More information about the Secure-testing-commits
mailing list