[Secure-testing-commits] r39837 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 23 13:15:06 UTC 2016
Author: carnil
Date: 2016-02-23 13:15:06 +0000 (Tue, 23 Feb 2016)
New Revision: 39837
Modified:
data/CVE/list
Log:
Fix descriptions for libssh2 and libssh CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-23 13:02:17 UTC (rev 39836)
+++ data/CVE/list 2016-02-23 13:15:06 UTC (rev 39837)
@@ -5316,7 +5316,7 @@
RESERVED
CVE-2016-0788
RESERVED
-CVE-2016-0787 (Weak Diffie-Hellman secret generation in libssh2 before 1.7.0)
+CVE-2016-0787 [Weak Diffie-Hellman secret generation in libssh2 before 1.7.0]
- libssh2 <unfixed>
NOTE: Upstream patch only fixes DH SHA-256 key exchange type, not DH SHA-1
CVE-2016-0786
@@ -5491,7 +5491,7 @@
NOTE: Issue when linked against libtiff >= 4.0.0
NOTE: Fixed by: https://github.com/python-pillow/Pillow/commit/6dcbf5bd96b717c58d7b642949da8d323099928e (3.1.1)
NOTE: Introduced by: https://github.com/python-pillow/Pillow/commit/e782fe721e0156de9636e78cd881d9f9e7e6ce50 (2.0.0)
-CVE-2016-0739 (Weak Diffie-Hellman secret generation in libssh)
+CVE-2016-0739 [Weak Diffie-Hellman secret generation in libssh]
- libssh <unfixed>
CVE-2016-0738 (OpenStack Object Storage (Swift) before 2.3.1 (Kilo), 2.4.x, and 2.5.x ...)
- swift 2.5.0-3 (bug #812984)
More information about the Secure-testing-commits
mailing list