[Secure-testing-commits] r44392 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Sep 7 12:16:27 UTC 2016
Author: carnil
Date: 2016-09-07 12:16:27 +0000 (Wed, 07 Sep 2016)
New Revision: 44392
Modified:
data/CVE/list
Log:
Add upstream advisory for curl issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-07 11:20:07 UTC (rev 44391)
+++ data/CVE/list 2016-09-07 12:16:27 UTC (rev 44392)
@@ -59,6 +59,7 @@
- curl <unfixed> (bug #836918)
NOTE: Only affects libcurl3-nss
NOTE: http://seclists.org/oss-sec/2016/q3/419
+ NOTE: https://curl.haxx.se/docs/adv_20160907.html
CVE-2016-7145 [certificate fingerprint spoofing through crafted SASL messages]
RESERVED
NOT-FOR-US: Nefarious 2
More information about the Secure-testing-commits
mailing list