[Secure-testing-commits] r55206 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 29 18:20:43 UTC 2017
Author: carnil
Date: 2017-08-29 18:20:43 +0000 (Tue, 29 Aug 2017)
New Revision: 55206
Modified:
data/CVE/list
Log:
Add paper reference for libgcrypt20 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-29 18:16:19 UTC (rev 55205)
+++ data/CVE/list 2017-08-29 18:20:43 UTC (rev 55206)
@@ -37616,6 +37616,7 @@
[jessie] - libgcrypt20 <not-affected> (Vulnerable code not present, no Curve25519 support)
- libgcrypt11 <not-affected> (Vulnerable code not present, no Curve25519 support)
NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=da780c8183cccc8f533c8ace8211ac2cb2bdee7b
+ NOTE: https://eprint.iacr.org/2017/806
CVE-2017-0378 (XSS exists in the login_form function in views/helpers.php in Phamm ...)
- phamm <unfixed> (bug #868988)
[stretch] - phamm <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list