[Secure-testing-commits] r28844 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Sep 17 04:44:18 UTC 2014


Author: carnil
Date: 2014-09-17 04:44:18 +0000 (Wed, 17 Sep 2014)
New Revision: 28844

Modified:
   data/CVE/list
Log:
Add more information for CVE-2014-3616/nginx

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-17 00:12:14 UTC (rev 28843)
+++ data/CVE/list	2014-09-17 04:44:18 UTC (rev 28844)
@@ -6391,9 +6391,10 @@
 	- moodle <unfixed>
 	[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-46619
-CVE-2014-3616
+CVE-2014-3616 [reuse cached SSL sessions in unrelated contexts]
 	RESERVED
 	- nginx <unfixed>
+	NOTE: http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html
 CVE-2014-3615 [qemu vga emulator information leakage when guest sets high resolution]
 	RESERVED
 	- qemu <unfixed>




More information about the Secure-testing-commits mailing list