[Secure-testing-commits] r35954 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 10 09:37:08 UTC 2015
Author: carnil
Date: 2015-08-10 09:37:08 +0000 (Mon, 10 Aug 2015)
New Revision: 35954
Modified:
data/CVE/list
Log:
Update status for gnutls
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-10 09:29:46 UTC (rev 35953)
+++ data/CVE/list 2015-08-10 09:37:08 UTC (rev 35954)
@@ -1,9 +1,11 @@
CVE-2015-XXXX [GNUTLS-SA-2015-3 double free in certificate DN decoding]
- gnutls28 <unfixed>
- - gnutls26 <removed>
+ - gnutls26 <not-affected> (Vulnerable code not present)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/10/1
NOTE: https://gitlab.com/gnutls/gnutls/commit/272854367efc130fbd4f1a51840d80c630214e12
NOTE: http://www.gnutls.org/security.html#GNUTLS-SA-2015-3
+ NOTE: _gnutls_x509_dn_to_string() introduced in 3.1.10 via:
+ NOTE: https://gitlab.com/gnutls/gnutls/commit/6be35136333b5d6289f23209cf896e741462909a
CVE-2015-5958
RESERVED
CVE-2015-5956
More information about the Secure-testing-commits
mailing list