[Secure-testing-commits] r40092 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Mar 1 13:38:49 UTC 2016
Author: jmm
Date: 2016-03-01 13:38:49 +0000 (Tue, 01 Mar 2016)
New Revision: 40092
Modified:
data/CVE/list
Log:
sslv2 disabled since wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-01 13:36:40 UTC (rev 40091)
+++ data/CVE/list 2016-03-01 13:38:49 UTC (rev 40092)
@@ -6180,7 +6180,7 @@
TODO: check
CVE-2016-0800
RESERVED
- - openssl <unfixed>
+ - openssl 1.0.0c-2
NOTE: https://www.drownattack.com/
CVE-2016-0799
RESERVED
@@ -9223,6 +9223,7 @@
CVE-2015-8239 [race condition checking digests/checksums in sudoers]
RESERVED
- sudo <unfixed> (bug #805563)
+ [jessie] - sudo <no-dsa> (Minor issue)
[wheezy] - sudo <not-affected> (Command digests are only supported by version 1.8.7 or higher)
[squeeze] - sudo <not-affected> (Command digests are only supported by version 1.8.7 or higher)
NOTE: http://www.openwall.com/lists/oss-security/2015/11/10/2
More information about the Secure-testing-commits
mailing list