[Secure-testing-commits] r40112 - data/CVE

Kurt Roeckx kroeckx at moszumanska.debian.org
Tue Mar 1 18:30:40 UTC 2016


Author: kroeckx
Date: 2016-03-01 18:30:40 +0000 (Tue, 01 Mar 2016)
New Revision: 40112

Modified:
   data/CVE/list
Log:
Add comment for NSS


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-01 18:28:59 UTC (rev 40111)
+++ data/CVE/list	2016-03-01 18:30:40 UTC (rev 40112)
@@ -6205,6 +6205,7 @@
 	- openssl 1.0.0c-2
 	- nss 3.13
 	NOTE: openssl 1.0.0c-2 dropped SSLv2 support
+	NOTE: NSS disabled SSLv2 by default in 3.13
 	NOTE: https://www.openssl.org/news/secadv/20160301.txt
 	NOTE: https://www.drownattack.com/
 	NOTE: GNUTLS never implemented SSLv2




More information about the Secure-testing-commits mailing list