[Secure-testing-commits] r28709 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Sep 11 06:41:07 UTC 2014
Author: carnil
Date: 2014-09-11 06:41:07 +0000 (Thu, 11 Sep 2014)
New Revision: 28709
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2014-3604/not-yet-commons-ssl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-11 05:33:56 UTC (rev 28708)
+++ data/CVE/list 2014-09-11 06:41:07 UTC (rev 28709)
@@ -6096,7 +6096,7 @@
RESERVED
CVE-2014-3604 [Hostname verification susceptible to MITM attack]
RESERVED
- - not-yet-commons-ssl <unfixed> (bug #759526)
+ - not-yet-commons-ssl 0.3.15-1 (bug #759526)
NOTE: http://lists.juliusdavies.ca/pipermail/not-yet-commons-ssl-juliusdavies.ca/2014-August/000832.html
CVE-2014-3603 [HTTPS Connections Via HTTP Resources Do Not Perform Hostname Verification]
RESERVED
More information about the Secure-testing-commits
mailing list