[Secure-testing-commits] r39441 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Feb 4 00:08:33 UTC 2016
Author: jmm
Date: 2016-02-04 00:08:33 +0000 (Thu, 04 Feb 2016)
New Revision: 39441
Modified:
data/CVE/list
Log:
chrony no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-03 23:31:05 UTC (rev 39440)
+++ data/CVE/list 2016-02-04 00:08:33 UTC (rev 39441)
@@ -1753,7 +1753,9 @@
NOTE: http://xenbits.xen.org/xsa/advisory-167.html
TODO: check
CVE-2016-1567 (chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer ...)
- - chrony <unfixed> (bug #812923)
+ - chrony <unfixed> (low; bug #812923)
+ [jessie] - chrony <no-dsa> (Minor issue)
+ [wheezy] - chrony <no-dsa> (Minor issue)
NOTE: http://www.talosintel.com/reports/TALOS-2016-0071/
NOTE: http://chrony.tuxfamily.org/news.html#_20_jan_2016_chrony_2_2_1_and_chrony_1_31_2_released
NOTE: Fix for 2.x http://git.tuxfamily.org/chrony/chrony.git/commit/?id=a78bf9725a7b481ebff0e0c321294ba767f2c1d8
More information about the Secure-testing-commits
mailing list