[Secure-testing-commits] r41987 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-05-24 05:14:59 +0000 (Tue, 24 May 2016)
New Revision: 41987

Modified:
   data/CVE/list
Log:
Update information for openntpd

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-24 05:06:20 UTC (rev 41986)
+++ data/CVE/list	2016-05-24 05:14:59 UTC (rev 41987)
@@ -1,8 +1,9 @@
 CVE-2016-XXXX [OpenNTPD not verifying CN during HTTPS constraints request]
 	- openntpd <unfixed>
+	[jessie] - openntpd <not-affected> (Vulnerable code introduced later)
+	[wheezy] - openntpd <not-affected> (Vulnerable code introduced later)
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/05/23/2
 	NOTE: Authenticated TLS "contraints" introduced in 2015-03-24 OpenNTPD 5.7p4
-	TODO: check
 CVE-2016-4950
 	RESERVED
 CVE-2016-4949