[Secure-testing-commits] r34376 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu May 21 03:22:11 UTC 2015


Author: carnil
Date: 2015-05-21 03:22:11 +0000 (Thu, 21 May 2015)
New Revision: 34376

Modified:
   data/CVE/list
Log:
Add CVE-2015-4000

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-05-21 03:09:21 UTC (rev 34375)
+++ data/CVE/list	2015-05-21 03:22:11 UTC (rev 34376)
@@ -96,8 +96,11 @@
 	RESERVED
 CVE-2015-4001
 	RESERVED
-CVE-2015-4000
+CVE-2015-4000 [TLS does not properly convey server's ciphersuite choice]
 	RESERVED
+	NOTE: CVE assigned specific to vulnerability in the TLS protocol that was
+	NOTE: disclosed in section 3.2 of the
+	NOTE: https://weakdh.org/imperfect-forward-secrecy.pdf paper.
 CVE-2015-3999
 	RESERVED
 CVE-2015-3998




More information about the Secure-testing-commits mailing list