[Secure-testing-commits] r34118 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Thu May 7 21:10:16 UTC 2015
Author: sectracker
Date: 2015-05-07 21:10:16 +0000 (Thu, 07 May 2015)
New Revision: 34118
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-07 19:59:54 UTC (rev 34117)
+++ data/CVE/list 2015-05-07 21:10:16 UTC (rev 34118)
@@ -25701,7 +25701,7 @@
{DSA-3053-1 DLA-81-1}
- openssl 1.0.1j-1
CVE-2014-3566 (The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other ...)
- {DSA-3147-1 DSA-3144-1 DSA-3092-1 DLA-157-1}
+ {DSA-3253-1 DSA-3147-1 DSA-3144-1 DSA-3092-1 DLA-157-1}
- arora <unfixed> (unimportant)
- bouncycastle <not-affected> (SSLv3 needs to be explicitly enabled)
NOTE: http://www.kb.cert.org/vuls/id/BLUU-9PYTFQ
@@ -59254,7 +59254,7 @@
[squeeze] - chromium-browser <end-of-life>
NOTE: http://www.imperialviolet.org/2012/09/21/crime.html
CVE-2012-4929 (The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google ...)
- {DSA-2627-1 DSA-2626-1 DSA-2579-1 DLA-0008-1}
+ {DSA-3253-1 DSA-2627-1 DSA-2626-1 DSA-2579-1 DLA-0008-1}
- iceweasel <not-affected> (Firefox ESV not use TLS/SSL compression)
- chromium-browser 22.0.1229.94~r161065-1
NOTE: Chromium fix: https://chromiumcodereview.appspot.com/10825183/
@@ -103658,7 +103658,7 @@
- linux-2.6 <not-affected> (redhat-specific configuration issue)
- linux-2.6.24 <not-affected> (redhat-specific configuration issue)
CVE-2009-3555 (The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as ...)
- {DSA-2626-1 DSA-2141-2 DSA-2141-1 DSA-1934-1}
+ {DSA-3253-1 DSA-2626-1 DSA-2141-2 DSA-2141-1 DSA-1934-1}
- apache2 2.2.14-2
- openssl 0.9.8k-6
- nss 3.12.6-1
More information about the Secure-testing-commits
mailing list