[Secure-testing-commits] r29021 - data/CVE
Yves-Alexis Perez
corsac at moszumanska.debian.org
Wed Sep 24 23:00:59 UTC 2014
Author: corsac
Date: 2014-09-24 23:00:59 +0000 (Wed, 24 Sep 2014)
New Revision: 29021
Modified:
data/CVE/list
Log:
add notes about cyassl and gnutls
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-24 22:55:56 UTC (rev 29020)
+++ data/CVE/list 2014-09-24 23:00:59 UTC (rev 29021)
@@ -1,3 +1,10 @@
+CVE-2014-XXXX [cyassl: RSA Padding check vulnerability]
+ - cyassl <unfixed>
+ NOTE: http://www.yassl.com/yaSSL/Blog/Entries/2014/9/12_CyaSSL_3.2.0_Released.html
+ NOTE: looks similar to CVE-2014-1568 in nss
+CVE-2014-XXXX [gnutls: certificate sanitization issue]
+ NOTE: http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7663
+ NOTE: looks similar to CVE-2014-1568 in nss
CVE-2014-XXXX [mediawiki: releases 1.19.19, 1.22.11 and 1.23.4]
- mediawiki <unfixed> (bug #762754)
[wheezy] - mediawiki <unfixed> (bug #762754)
More information about the Secure-testing-commits
mailing list