[Secure-testing-commits] r42130 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun May 29 20:06:57 UTC 2016
Author: carnil
Date: 2016-05-29 20:06:57 +0000 (Sun, 29 May 2016)
New Revision: 42130
Modified:
data/CVE/list
Log:
CVE-2016-5117/openntpd assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-29 19:45:47 UTC (rev 42129)
+++ data/CVE/list 2016-05-29 20:06:57 UTC (rev 42130)
@@ -457,11 +457,11 @@
RESERVED
CVE-2016-4953
RESERVED
-CVE-2016-XXXX [OpenNTPD not verifying CN during HTTPS constraints request]
+CVE-2016-5117 [OpenNTPD not verifying CN during HTTPS constraints request]
- openntpd <unfixed>
[jessie] - openntpd <not-affected> (Vulnerable code introduced later)
[wheezy] - openntpd <not-affected> (Vulnerable code introduced later)
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/05/23/2
+ NOTE: http://www.openwall.com/lists/oss-security/2016/05/23/2
NOTE: Authenticated TLS "contraints" introduced in 2015-03-24 OpenNTPD 5.7p4
CVE-2016-4964 [scsi: mptsas infinite loop in mptsas_fetch_requests]
RESERVED
More information about the Secure-testing-commits
mailing list