[Secure-testing-commits] r31259 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 11 06:25:44 UTC 2015
Author: carnil
Date: 2015-01-11 06:25:44 +0000 (Sun, 11 Jan 2015)
New Revision: 31259
Modified:
data/CVE/list
Log:
Update CVE-2014-3569/openssl, add upstream patch reference
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-11 06:05:41 UTC (rev 31258)
+++ data/CVE/list 2015-01-11 06:25:44 UTC (rev 31259)
@@ -16766,8 +16766,7 @@
CVE-2014-3569 (The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, ...)
{DLA-81-1}
- openssl 1.0.1k-1
- [wheezy] - openssl <not-affected> (Doesn't use no-ssl3 yet)
- [squeeze] - openssl <not-affected> (Doesn't use no-ssl3 yet)
+ NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=6ce9687b5aba5391fc0de50e18779eb676d0e04d
CVE-2014-3568 (OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j ...)
{DSA-3053-1 DLA-81-1}
- openssl 1.0.1j-1
More information about the Secure-testing-commits
mailing list