[Secure-testing-commits] r49297 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 28 15:43:30 UTC 2017
Author: carnil
Date: 2017-02-28 15:43:30 +0000 (Tue, 28 Feb 2017)
New Revision: 49297
Modified:
data/CVE/list
Log:
Add CVE-2017-2625/libxdmcp
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-28 15:41:52 UTC (rev 49296)
+++ data/CVE/list 2017-02-28 15:43:30 UTC (rev 49297)
@@ -10302,8 +10302,10 @@
NOT-FOR-US: RHEL packaging flaw for openstack
CVE-2017-2626
RESERVED
-CVE-2017-2625
+CVE-2017-2625 [Weak entropy usage for session keys in libxdm]
RESERVED
+ - libxdmcp <unfixed>
+ NOTE: https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/
CVE-2017-2624 [Timing attack against MIT Cookie]
RESERVED
- xorg-server <unfixed>
More information about the Secure-testing-commits
mailing list