[Secure-testing-commits] r58330 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 7 14:36:37 UTC 2017
Author: carnil
Date: 2017-12-07 14:36:37 +0000 (Thu, 07 Dec 2017)
New Revision: 58330
Modified:
data/CVE/list
Log:
Add CVE-2017-3738
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-07 14:34:28 UTC (rev 58329)
+++ data/CVE/list 2017-12-07 14:36:37 UTC (rev 58330)
@@ -43462,8 +43462,11 @@
NOT-FOR-US: Lenovo
CVE-2017-3739
RESERVED
-CVE-2017-3738
+CVE-2017-3738 [rsaz_1024_mul_avx2 overflow bug on x86_64]
RESERVED
+ - openssl <unfixed>
+ - openssl1.0 <unfixed>
+ NOTE: https://www.openssl.org/news/secadv/20171207.txt
CVE-2017-3737 [Read/write after SSL object in error state]
RESERVED
- openssl 1.1.0b-2
More information about the Secure-testing-commits
mailing list