[Secure-testing-commits] r33776 - data/CVE

Thu Apr 23 07:10:35 UTC 2015

Author: jmm
Date: 2015-04-23 07:10:35 +0000 (Thu, 23 Apr 2015)
New Revision: 33776

Modified:
   data/CVE/list
Log:
ntp CVEfied


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-04-23 06:49:35 UTC (rev 33775)
+++ data/CVE/list	2015-04-23 07:10:35 UTC (rev 33776)
@@ -904,13 +904,13 @@
 	RESERVED
 	- ceph-deploy <itp> (bug #694013)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/04/09/9
-CVE-2015-XXXX [ntp-keygen may generate non-random symmetric keys on big-endian systems]
+CVE-2015-3405 [ntp-keygen may generate non-random symmetric keys on big-endian systems]
 	[squeeze] - ntp 1:4.2.6.p2+dfsg-1+deb6u3
 	[wheezy] - ntp 1:4.2.6.p5+dfsg-2+deb7u4
 	- ntp 1:4.2.6.p5+dfsg-7
 	NOTE: https://bugs.ntp.org/show_bug.cgi?id=2797
 	NOTE: Patch: http://bk1.ntp.org/ntp-stable/?PAGE=patch&REV=55199296N2gFqH1Hm5GOnhrk9Ypygg
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/04/09/5
+	NOTE: http://www.openwall.com/lists/oss-security/2015/04/09/5
 CVE-2015-3008 (Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x ...)
 	- asterisk <unfixed> (bug #782411)
 	[squeeze] - asterisk <end-of-life> (Not supported in Squeeze LTS)


