[Secure-testing-commits] r40095 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Mar 1 14:07:06 UTC 2016
Author: jmm
Date: 2016-03-01 14:07:06 +0000 (Tue, 01 Mar 2016)
New Revision: 40095
Modified:
data/CVE/list
Log:
two further openssl issues limited to sslv2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-01 14:06:23 UTC (rev 40094)
+++ data/CVE/list 2016-03-01 14:07:06 UTC (rev 40095)
@@ -6181,6 +6181,7 @@
CVE-2016-0800
RESERVED
- openssl 1.0.0c-2
+ NOTE: 1.0.0c-2 dropped SSLv2 support
NOTE: https://www.openssl.org/news/secadv/20160301.txt
NOTE: https://www.drownattack.com/
NOTE: GNUTLS never implemented SSLv2
@@ -6532,11 +6533,13 @@
NOTE: https://www.openssl.org/news/secadv/20160301.txt
CVE-2016-0704
RESERVED
- - openssl <unfixed>
+ - openssl 1.0.0c-2
+ NOTE: 1.0.0c-2 dropped SSLv2 support
NOTE: https://www.openssl.org/news/secadv/20160301.txt
CVE-2016-0703
RESERVED
- - openssl <unfixed>
+ - openssl 1.0.0c-2
+ NOTE: 1.0.0c-2 dropped SSLv2 support
NOTE: https://www.openssl.org/news/secadv/20160301.txt
CVE-2016-0702
RESERVED
More information about the Secure-testing-commits
mailing list