[Secure-testing-commits] r45555 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 24 19:34:55 UTC 2016
Author: carnil
Date: 2016-10-24 19:34:55 +0000 (Mon, 24 Oct 2016)
New Revision: 45555
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2016-8858, #841884
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-24 19:24:04 UTC (rev 45554)
+++ data/CVE/list 2016-10-24 19:34:55 UTC (rev 45555)
@@ -66,7 +66,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2016/10/19/1
NOTE: Also check lib/tre-match-parallel.c
CVE-2016-8858 [Memory exhaustion due to unregistered KEXINIT handler after receiving message]
- - openssh <unfixed> (bug #841884)
+ - openssh 1:7.3p1-2 (bug #841884)
[jessie] - openssh <no-dsa> (Minor issue)
[wheezy] - openssh <no-dsa> (Minor issue)
NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup
More information about the Secure-testing-commits
mailing list