[Secure-testing-commits] r33959 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 29 19:11:12 UTC 2015
Author: carnil
Date: 2015-04-29 19:11:12 +0000 (Wed, 29 Apr 2015)
New Revision: 33959
Modified:
data/CVE/list
Log:
Update CVE-2015-3427/quassel information
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-29 18:47:23 UTC (rev 33958)
+++ data/CVE/list 2015-04-29 19:11:12 UTC (rev 33959)
@@ -1,8 +1,10 @@
CVE-2015-3427 [Incomplete fix for CVE-2013-4422]
- quassel <unfixed>
+ [jessie] - quassel <not-affected> (incomplete fix not applied)
+ [wheezy] - quassel <not-affected> (incomplete fix not applied)
+ [squeeze] - quassel <not-affected> (incomplete fix not applied)
NOTE: https://github.com/quassel/quassel/commit/6605882f41331c80f7ac3a6992650a702ec71283
NOTE: http://quassel-irc.org/node/120
- TODO: Needs to be re-evaluated
CVE-2015-3420 [SSL/TLS handshake failures leading to a crash of the login process]
- dovecot <unfixed> (bug #783649)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/26/3
More information about the Secure-testing-commits
mailing list