[Secure-testing-commits] r45617 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 26 04:24:46 UTC 2016
Author: carnil
Date: 2016-10-26 04:24:46 +0000 (Wed, 26 Oct 2016)
New Revision: 45617
Modified:
data/CVE/list
Log:
Add CVE-2016-5405/389-ds-base
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-25 21:10:11 UTC (rev 45616)
+++ data/CVE/list 2016-10-26 04:24:46 UTC (rev 45617)
@@ -11065,8 +11065,9 @@
NOTE: https://cgit.freedesktop.org/xorg/lib/libXv/commit/?id=d9da580b46a28ab497de2e94fdc7b9ff953dab17
CVE-2016-5406 (The domain controller in Red Hat JBoss Enterprise Application Platform ...)
NOT-FOR-US: JBoss EAP
-CVE-2016-5405
+CVE-2016-5405 [Password verification vulnerable to timing attack]
RESERVED
+ - 389-ds-base <unfixed>
CVE-2016-5404 (The cert_revoke command in FreeIPA does not check for the "revoke ...)
- freeipa <unfixed> (bug #835131)
NOTE: https://git.fedorahosted.org/cgit/freeipa.git/commit/?id=cf74584d0f772f3f5eccc1d30c001e4212a104fd (master)
More information about the Secure-testing-commits
mailing list