[Secure-testing-commits] r34092 - data/CVE
Thijs Kinkhorst
thijs at moszumanska.debian.org
Wed May 6 07:48:51 UTC 2015
Author: thijs
Date: 2015-05-06 07:48:51 +0000 (Wed, 06 May 2015)
New Revision: 34092
Modified:
data/CVE/list
Log:
renegotiation fixed in pound nmu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-06 05:16:44 UTC (rev 34091)
+++ data/CVE/list 2015-05-06 07:48:51 UTC (rev 34092)
@@ -103648,7 +103648,7 @@
[squeeze] - zorp <no-dsa> (Minor issue)
[lenny] - zorp <no-dsa> (Minor issue)
- lighttpd 1.4.30-1
- - pound <unfixed> (bug #765649)
+ - pound 2.6-6.1 (bug #765649)
[jessie] - pound <no-dsa> (Minor issue)
NOTE: the anti_beast.patch in pound 2.6-2 has some provision for this issue too but it seems to be broken, cf #765649
NOTE: for any of the currently unfixed implementations, you can solve the problem by disabling renegotiation
More information about the Secure-testing-commits
mailing list