[Secure-testing-commits] r36875 - data/CVE

[Raphaël Hertzog]

Author: hertzog
Date: 2015-09-28 13:25:24 +0000 (Mon, 28 Sep 2015)
New Revision: 36875

Modified:
   data/CVE/list
Log:
Add some info about bouncycastle.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-28 11:36:00 UTC (rev 36874)
+++ data/CVE/list	2015-09-28 13:25:24 UTC (rev 36875)
@@ -902,6 +902,7 @@
 	- bouncycastle <unfixed>
 	[experimental] - bouncycastle 1.51-1
 	NOTE: http://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html
+	NOTE: 2015-09-28: Mail sent to upstream authors to ask for commits to backport. --Raphael Hertzog
 CVE-2015-6939 (Cross-site scripting (XSS) vulnerability in the login module in ...)
 	NOT-FOR-US: Joomla
 CVE-2015-6936