[Secure-testing-commits] r35938 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Aug 8 11:51:30 UTC 2015
Author: carnil
Date: 2015-08-08 11:51:30 +0000 (Sat, 08 Aug 2015)
New Revision: 35938
Modified:
data/CVE/list
Log:
Add a note for CVE-2009-5147, add TODO check item
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-08 10:09:29 UTC (rev 35937)
+++ data/CVE/list 2015-08-08 11:51:30 UTC (rev 35938)
@@ -10053,6 +10053,11 @@
- ruby2.1 <unfixed>
- ruby2.2 <unfixed>
NOTE: https://github.com/ruby/ruby/commit/4600cf725a86ce31266153647ae5aa1197b1215b
+ NOTE: Although the is upstream commit mentioned, the corresponding change does not
+ NOTE: seem to be contained in e.g. latest 1.9.1 and 2.2. E.g.
+ NOTE: https://sources.debian.net/src/ruby2.1/2.1.5-4/ext/dl/handle.c/#L120 does
+ NOTE: contain the change.
+ TODO: check
CVE-2009-5146 [memory leak in hostname TLS extension]
RESERVED
- openssl 0.9.8k-1
More information about the Secure-testing-commits
mailing list