[Secure-testing-commits] r32518 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 26 18:56:22 UTC 2015
Author: carnil
Date: 2015-02-26 18:56:22 +0000 (Thu, 26 Feb 2015)
New Revision: 32518
Modified:
data/CVE/list
Log:
Update entries for mod-gnutls, added TODO item to check the 2009 CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-26 17:14:00 UTC (rev 32517)
+++ data/CVE/list 2015-02-26 18:56:22 UTC (rev 32518)
@@ -1039,10 +1039,14 @@
- novnc <unfixed> (bug #778618)
NOTE: https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/17/1
-CVE-2010-XXXX [GnuTLSClientVerify require is ignored]
+CVE-2015-2091 [vulnerability involving the server config context]
- mod-gnutls 0.6-1.3 (bug #578663)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/22/7
+CVE-2009-5144 [vulnerability involving the directory context]
+ - mod-gnutls 0.6-1.3 (bug #578663)
NOTE: https://github.com/airtower-luna/mod_gnutls/commit/5a8a32bbfb8a83fe6358c5c31c443325a7775fc2
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/22/7
+ NOTE: http://issues.outoforder.cc/view.php?id=93
+ TODO: check, this might already be fixed in earlier version
CVE-2014-9682
RESERVED
NOT-FOR-US: node-dns-sync
More information about the Secure-testing-commits
mailing list