[Secure-testing-commits] r38110 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 4 15:50:16 UTC 2015
Author: carnil
Date: 2015-12-04 15:50:14 +0000 (Fri, 04 Dec 2015)
New Revision: 38110
Modified:
data/CVE/list
Log:
Add CVE-2015-1794/openssl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-04 10:31:58 UTC (rev 38109)
+++ data/CVE/list 2015-12-04 15:50:14 UTC (rev 38110)
@@ -18849,6 +18849,11 @@
- glusterfs <not-affected> (Vulnerable code specific to glusterfs.spec and not present in source in Debian)
CVE-2015-1794
RESERVED
+ - openssl 1.0.2e-1
+ [jessie] - openssl <not-affected> (Vulnerable code not present)
+ [wheezy] - openssl <not-affected> (Vulnerable code not present)
+ [squeeze] - openssl <not-affected> (Vulnerable code not present)
+ NOTE: https://www.openssl.org/news/secadv/20151203.txt
CVE-2015-1793 (The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL ...)
- openssl 1.0.2d-1
[jessie] - openssl <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list