[Secure-testing-commits] r39527 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Feb 7 06:49:24 UTC 2016
Author: carnil
Date: 2016-02-07 06:49:23 +0000 (Sun, 07 Feb 2016)
New Revision: 39527
Modified:
data/CVE/list
Log:
Update CVE-2016-1494/python-rsa entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-07 05:17:30 UTC (rev 39526)
+++ data/CVE/list 2016-02-07 06:49:23 UTC (rev 39527)
@@ -2639,9 +2639,7 @@
CVE-2016-1494 (The verify function in the RSA package for Python (Python-RSA) before ...)
- python-rsa <unfixed> (bug #809980)
NOTE: proposed fix: https://bitbucket.org/sybren/python-rsa/pull-requests/14/security-fix-bb06-attack-in-verify-by/diff
- NOTE: proposed fix not yet merged
NOTE: https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/
- TODO: check
CVE-2015-8604 [SQL Injection in graphs_new.php]
RESERVED
{DLA-386-1}
More information about the Secure-testing-commits
mailing list