[Secure-testing-commits] r40256 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 9 06:08:25 UTC 2016
Author: carnil
Date: 2016-03-09 06:08:24 +0000 (Wed, 09 Mar 2016)
New Revision: 40256
Modified:
data/CVE/list
Log:
Update information for two nss issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-09 06:06:33 UTC (rev 40255)
+++ data/CVE/list 2016-03-09 06:08:24 UTC (rev 40256)
@@ -2940,7 +2940,7 @@
[wheezy] - iceweasel <not-affected> (Only affects Firefox 44.x)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-36/
- nss 2:3.21-1
- TODO: check
+ TODO: check if really fixed already in 3.21 upstream or only in 3.21.1
CVE-2016-1978 [Use-after-free in NSS during SSL connections in low memory]
RESERVED
- iceweasel 44.0-1
@@ -3094,7 +3094,7 @@
RESERVED
- iceweasel <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-35/
- - nss <unfixed>
+ - nss 2:3.23-1
NOTE: NSS fixed in 3.21.1
CVE-2016-1949 (Mozilla Firefox before 44.0.2 does not properly restrict the ...)
- iceweasel <unfixed>
More information about the Secure-testing-commits
mailing list