[Secure-testing-commits] r39867 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 23 20:44:57 UTC 2016
Author: carnil
Date: 2016-02-23 20:44:57 +0000 (Tue, 23 Feb 2016)
New Revision: 39867
Modified:
data/CVE/list
Log:
Add more botan1.10 issues from their security page
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-23 20:41:37 UTC (rev 39866)
+++ data/CVE/list 2016-02-23 20:44:57 UTC (rev 39867)
@@ -15047,14 +15047,23 @@
RESERVED
CVE-2015-5728
RESERVED
-CVE-2015-5727
+CVE-2015-5727 [Excess memory allocation in BER decoder]
RESERVED
-CVE-2015-5726
+ - botan1.10 1.10.10-1
+ NOTE: Fixed in 1.11.19 and 1.10.10, affected all previous versions of 1.10 and 1.11
+ NOTE: http://botan.randombit.net/security.html
+CVE-2015-5726 [Crash in BER decoder]
RESERVED
+ - botan1.10 1.10.10-1
+ NOTE: Fixed in 1.11.19 and 1.10.10, affected all previous versions of 1.10 and 1.11
+ NOTE: http://botan.randombit.net/security.html
CVE-2015-5725
RESERVED
-CVE-2014-9742
+CVE-2014-9742 [Insufficient randomness in Miller-Rabin primality check]
RESERVED
+ - botan1.10 1.10.8-1
+ NOTE: Introduced in 1.8.3, fixed in 1.10.8 and 1.11.9
+ NOTE: http://botan.randombit.net/security.html
CVE-2015-5741 [other discoveries of security-relevant RFC 7230 violations]
RESERVED
- golang 2:1.4.2-4 (bug #795106)
More information about the Secure-testing-commits
mailing list