[Secure-testing-commits] r52776 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jun 21 12:04:31 UTC 2017


Author: carnil
Date: 2017-06-21 12:04:29 +0000 (Wed, 21 Jun 2017)
New Revision: 52776

Modified:
   data/CVE/list
Log:
Add CVE-2017-7522/openvpn

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-21 12:00:11 UTC (rev 52775)
+++ data/CVE/list	2017-06-21 12:04:29 UTC (rev 52776)
@@ -6584,8 +6584,12 @@
 	RESERVED
 CVE-2017-7523
 	RESERVED
-CVE-2017-7522
+CVE-2017-7522 [Crash mbed TLS/PolarSSL-based server]
 	RESERVED
+	- openvpn <unfixed> (unimportant)
+	NOTE: http://www.openwall.com/lists/oss-security/2017/06/21/6
+	NOTE: In Debian openvpn is compiled against OpenSSL, thus even affected
+	NOTE: code present
 CVE-2017-7521 [Remote server crashes/double-free/memory leaks in certificate processing]
 	RESERVED
 	- openvpn <unfixed>




More information about the Secure-testing-commits mailing list