[Secure-testing-commits] r52877 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-06-24 18:52:07 +0000 (Sat, 24 Jun 2017)
New Revision: 52877

Modified:
   data/CVE/list
Log:
Add references for CVE-2017-9527/mruby

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-24 14:22:38 UTC (rev 52876)
+++ data/CVE/list	2017-06-24 18:52:07 UTC (rev 52877)
@@ -2069,6 +2069,8 @@
 	- mruby <unfixed> (low)
 	[stretch] - mruby <no-dsa> (Minor issue)
 	[jessie] - mruby <no-dsa> (Minor issue)
+	NOTE: https://github.com/mruby/mruby/issues/3486
+	NOTE: Fixed by: https://github.com/mruby/mruby/commit/5c114c91d4ff31859fcd84cf8bf349b737b90d99
 CVE-2017-9526 (In Libgcrypt before 1.7.7, an attacker who learns the EdDSA session key ...)
 	{DSA-3880-1}
 	- libgcrypt20 1.7.6-2