[Secure-testing-commits] r40594 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Mar 27 06:41:22 UTC 2016
Author: carnil
Date: 2016-03-27 06:41:22 +0000 (Sun, 27 Mar 2016)
New Revision: 40594
Modified:
data/CVE/list
Log:
Update status for CVE-2016-2166/qpid-proton
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-26 20:18:07 UTC (rev 40593)
+++ data/CVE/list 2016-03-27 06:41:22 UTC (rev 40594)
@@ -4126,10 +4126,10 @@
RESERVED
CVE-2016-2166 [reactor sends messages in clear if ssl is requested but not available]
RESERVED
- - qpid-proton <unfixed>
+ - qpid-proton <not-affected> (Vulnerable code not present)
NOTE: https://issues.apache.org/jira/browse/PROTON-1157
NOTE: http://qpid.apache.org/releases/qpid-proton-0.12.1/
- TODO: check
+ NOTE: Affects Qpid Proton python API starting at 0.9 up to and including 0.12.0
CVE-2016-2165
RESERVED
CVE-2016-2164
More information about the Secure-testing-commits
mailing list