[Secure-testing-commits] r40112 - data/CVE
Kurt Roeckx
kroeckx at moszumanska.debian.org
Tue Mar 1 18:30:40 UTC 2016
Author: kroeckx
Date: 2016-03-01 18:30:40 +0000 (Tue, 01 Mar 2016)
New Revision: 40112
Modified:
data/CVE/list
Log:
Add comment for NSS
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-01 18:28:59 UTC (rev 40111)
+++ data/CVE/list 2016-03-01 18:30:40 UTC (rev 40112)
@@ -6205,6 +6205,7 @@
- openssl 1.0.0c-2
- nss 3.13
NOTE: openssl 1.0.0c-2 dropped SSLv2 support
+ NOTE: NSS disabled SSLv2 by default in 3.13
NOTE: https://www.openssl.org/news/secadv/20160301.txt
NOTE: https://www.drownattack.com/
NOTE: GNUTLS never implemented SSLv2
More information about the Secure-testing-commits
mailing list