[Secure-testing-commits] r40924 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Apr 14 10:48:43 UTC 2016
Author: jmm
Date: 2016-04-14 10:48:42 +0000 (Thu, 14 Apr 2016)
New Revision: 40924
Modified:
data/CVE/list
Log:
updated fix for libcrypto++
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-14 10:08:55 UTC (rev 40923)
+++ data/CVE/list 2016-04-14 10:48:42 UTC (rev 40924)
@@ -110,9 +110,10 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/04/10/5
CVE-2016-3995 [Timing Attack Counter Measure AES]
RESERVED
- - libcrypto++ 5.6.3-5
+ - libcrypto++ 5.6.3-6
NOTE: https://github.com/weidai11/cryptopp/issues/146
NOTE: http://www.openwall.com/lists/oss-security/2016/04/10/6
+ NOTE: Initial upload in 5.6.3-5 was incomplete
CVE-2016-XXXX [Heap-based buffer overread in xmlNextChar]
- libxml2 <unfixed>
NOTE: https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602
More information about the Secure-testing-commits
mailing list