[Secure-testing-commits] r51116 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Apr 27 19:27:34 UTC 2017
Author: carnil
Date: 2017-04-27 19:27:34 +0000 (Thu, 27 Apr 2017)
New Revision: 51116
Modified:
data/CVE/list
Log:
CVE-2017-8301/libressl, itp'ed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-27 18:07:38 UTC (rev 51115)
+++ data/CVE/list 2017-04-27 19:27:34 UTC (rev 51116)
@@ -2,6 +2,9 @@
- kedpm <unfixed> (bug #860817)
NOTE: patch gives workaround, will be removed from stretch/sid
NOTE: http://www.openwall.com/lists/oss-security/2017/04/25/9
+CVE-2017-8301 [Missing TLS Certificate Validation]
+ - libressl <itp> (bug #754513)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/04/27/11
CVE-2017-8291 [shell injection]
- ghostscript <unfixed> (bug #861295)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697808 (duplicate of 697799)
More information about the Secure-testing-commits
mailing list