[Secure-testing-commits] r40111 - data/CVE

[Kurt Roeckx]

Author: kroeckx
Date: 2016-03-01 18:28:59 +0000 (Tue, 01 Mar 2016)
New Revision: 40111

Modified:
   data/CVE/list
Log:
openssl fixed version


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-01 18:23:12 UTC (rev 40110)
+++ data/CVE/list	2016-03-01 18:28:59 UTC (rev 40111)
@@ -6211,18 +6211,18 @@
 	NOTE: http://blog.cryptographyengineering.com/2016/03/attack-of-week-drown.html
 CVE-2016-0799 [Memory issues in BIO_*printf functions]
 	RESERVED
-	- openssl <unfixed>
+	- openssl 1.0.2g-1
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 	NOTE: Fixed in master in https://git.openssl.org/?p=openssl.git;a=commit;h=a801bf263849a2ef773e5bc0c86438cbba720835
 	NOTE: https://guidovranken.wordpress.com/2016/02/27/openssl-cve-2016-0799-heap-corruption-via-bio_printf/
 CVE-2016-0798 [Memory leak in SRP database lookups]
 	RESERVED
-	- openssl <unfixed>
+	- openssl 1.0.2g-1
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 	NOTE: Fixed in master in https://git.openssl.org/?p=openssl.git;a=commit;h=59a908f1e8380412a81392c468b83bf6071beb2a
 CVE-2016-0797 [BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption]
 	RESERVED
-	- openssl <unfixed>
+	- openssl 1.0.2g-1
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 	NOTE: Fixed in master in https://git.openssl.org/?p=openssl.git;a=commit;h=99ba9fd02fd481eb971023a3a0a251a37eb87e4c
 CVE-2016-0796
@@ -6550,7 +6550,7 @@
 	NOTE: Fixed in 6.0.45, 7.0.68, 8.0.32, 9.0.0.M3
 CVE-2016-0705 [Double-free in DSA code]
 	RESERVED
-	- openssl <unfixed>
+	- openssl 1.0.2g-1
 	[squeeze] - openssl <not-affected> (vulnerable code not present)
 	NOTE: Fixed in master in https://git.openssl.org/?p=openssl.git;a=commit;h=ab4a81f69ec88d06c9d8de15326b9296d7f498ed
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
@@ -6566,7 +6566,7 @@
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 CVE-2016-0702 [Side channel attack on modular exponentiation]
 	RESERVED
-	- openssl <unfixed>
+	- openssl 1.0.2g-1
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 	NOTE: https://cachebleed.info
 CVE-2016-0701 (The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 ...)