[Secure-testing-commits] r37239 - data/CVE

Raphaël Hertzog hertzog at moszumanska.debian.org
Thu Oct 22 12:55:14 UTC 2015


Author: hertzog
Date: 2015-10-22 12:55:13 +0000 (Thu, 22 Oct 2015)
New Revision: 37239

Modified:
   data/CVE/list
Log:
Add bug for bouncycastle issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-22 11:10:51 UTC (rev 37238)
+++ data/CVE/list	2015-10-22 12:55:13 UTC (rev 37239)
@@ -2171,7 +2171,7 @@
 	- ipython <not-affected> (Affects versions 3.0 to 3.2.1)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/09/16/3
 CVE-2015-XXXX [bouncycastle ecc leak]
-	- bouncycastle <unfixed>
+	- bouncycastle <unfixed> (bug #802671)
 	[experimental] - bouncycastle 1.51-1
 	NOTE: https://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html
 	NOTE: Commits: https://github.com/bcgit/bc-java/commit/5cb2f05




More information about the Secure-testing-commits mailing list