[Secure-testing-commits] r29680 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Mon Oct 27 09:04:18 UTC 2014
Author: fgeek-guest
Date: 2014-10-27 09:04:18 +0000 (Mon, 27 Oct 2014)
New Revision: 29680
Modified:
data/CVE/list
Log:
CVE-2014-3566/znc bug
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-27 08:04:08 UTC (rev 29679)
+++ data/CVE/list 2014-10-27 09:04:18 UTC (rev 29680)
@@ -11427,7 +11427,7 @@
- uzbl <unfixed> (unimportant)
- webfs <unfixed>
- yaws <unfixed>
- - znc <unfixed>
+ - znc <unfixed> (bug #766957)
NOTE: https://www.openssl.org/~bodo/ssl-poodle.pdf
NOTE: http://googleonlinesecurity.blogspot.fr/2014/10/this-poodle-bites-exploiting-ssl-30.html
NOTE: This is only about the SSLv3 CBC padding, not about any downgrade attack or support for the fallback SCSV
More information about the Secure-testing-commits
mailing list