[Secure-testing-commits] r44353 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Mon Sep 5 23:31:15 UTC 2016
Author: anarcat
Date: 2016-09-05 23:31:14 +0000 (Mon, 05 Sep 2016)
New Revision: 44353
Modified:
data/CVE/list
Log:
Summary: CVEs issued for SASL ircd bugs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-05 23:17:19 UTC (rev 44352)
+++ data/CVE/list 2016-09-05 23:31:14 UTC (rev 44353)
@@ -1,10 +1,15 @@
-CVE-2016-XXXX [certificate fingerprint spoofing through crafted SASL messages]
- - inspircd <unfixed> (bug #836706)
- NOTE: http://www.inspircd.org/2016/09/03/v2023-released.html
+CVE-2016-7144 [certificate fingerprint spoofing through crafted SASL messages]
+ NOT-FOR-US: UnrealIRCd
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/09/04/3
+ NOTE: unrealircd reportedly vulnerable, and ircd-seven reportedly not vulnerable
+CVE-2016-7143 [certificate fingerprint spoofing through crafted SASL messages]
- charybdis <unfixed> (bug #836714)
NOTE: charybdis patch: https://github.com/charybdis-ircd/charybdis/commit/818a3fda944b26d4814132cee14cfda4ea4aa824
- NOTE: unrealircd reportedly vulnerable, and ircd-seven reportedly not vulnerable
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/09/04/3
+CVE-2016-7142 [certificate fingerprint spoofing through crafted SASL messages]
+ - inspircd <unfixed> (bug #836706)
+ NOTE: http://www.inspircd.org/2016/09/03/v2023-released.html
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/09/04/3
CVE-2016-7120
RESERVED
CVE-2016-7134 [Heap overflow in curl_escape]
More information about the Secure-testing-commits
mailing list