[Secure-testing-commits] r32911 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Mar 16 10:04:32 UTC 2015
Author: carnil
Date: 2015-03-16 10:04:32 +0000 (Mon, 16 Mar 2015)
New Revision: 32911
Modified:
data/CVE/list
Log:
Add not yet CVEified openssl issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-16 10:02:25 UTC (rev 32910)
+++ data/CVE/list 2015-03-16 10:04:32 UTC (rev 32911)
@@ -39,6 +39,10 @@
CVE-2015-XXXX [Incomplete fix for CVE-2014-9740]
- icu <unfixed> (bug #780503)
[wheezy] - icu <not-affected> (Incomplete patch was never applied)
+CVE-2009-XXXX [memmory leak in hostname TLS extension]
+ - openssl 0.9.8g-1
+ NOTE: https://github.com/openssl/openssl/commit/7587347bc48e7e8a1e800e48bb0a658f1557c424
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/16/4
CVE-2015-2298 [information leak]
- etherpad-lite <itp> (bug #576998)
NOTE: https://github.com/ether/etherpad-lite/commit/a0fb65205c7d7ff95f00eb9fd88e93b300f30c3d
More information about the Secure-testing-commits
mailing list