[Secure-testing-commits] r39839 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 23 13:18:42 UTC 2016
Author: carnil
Date: 2016-02-23 13:18:42 +0000 (Tue, 23 Feb 2016)
New Revision: 39839
Modified:
data/CVE/list
Log:
Reference upstream fix for libssh, CVE-2016-0739
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-23 13:16:35 UTC (rev 39838)
+++ data/CVE/list 2016-02-23 13:18:42 UTC (rev 39839)
@@ -5494,6 +5494,7 @@
NOTE: Introduced by: https://github.com/python-pillow/Pillow/commit/e782fe721e0156de9636e78cd881d9f9e7e6ce50 (2.0.0)
CVE-2016-0739 [Weak Diffie-Hellman secret generation in libssh]
- libssh <unfixed>
+ NOTE: Upstream fix: https://git.libssh.org/projects/libssh.git/commit/?h=v0-7&id=f8d0026c65fc8a55748ae481758e2cf376c26c86
CVE-2016-0738 (OpenStack Object Storage (Swift) before 2.3.1 (Kilo), 2.4.x, and 2.5.x ...)
- swift 2.5.0-3 (bug #812984)
NOTE: Swift: >=2.2.1 <= 2.3.0, >= 2.4.0 <= 2.5.0
More information about the Secure-testing-commits
mailing list