[Secure-testing-commits] r44554 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Sep 13 12:18:43 UTC 2016
Author: carnil
Date: 2016-09-13 12:18:43 +0000 (Tue, 13 Sep 2016)
New Revision: 44554
Modified:
data/CVE/list
Log:
GnuTLS issue fixed in 3.5.3-4
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-13 12:12:27 UTC (rev 44553)
+++ data/CVE/list 2016-09-13 12:18:43 UTC (rev 44554)
@@ -1,6 +1,7 @@
CVE-2016-XXXX [GNUTLS-SA-2016-3: missing OCSP response serial length check]
- - gnutls28 <unfixed>
+ - gnutls28 3.5.3-4
NOTE: http://lists.gnutls.org/pipermail/gnutls-devel/2016-September/008146.html
+ NOTE: Upstream fix: https://gitlab.com/gnutls/gnutls/commit/964632f37dfdfb914ebc5e49db4fa29af35b1de9
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1374266
CVE-2017-0300
RESERVED
More information about the Secure-testing-commits
mailing list