[Secure-testing-commits] r51955 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Thu May 25 10:30:16 UTC 2017
Author: hertzog
Date: 2017-05-25 10:30:16 +0000 (Thu, 25 May 2017)
New Revision: 51955
Modified:
data/CVE/list
Log:
Mark CVE-2017-8932 as not affecting wheezy and jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-25 10:22:49 UTC (rev 51954)
+++ data/CVE/list 2017-05-25 10:30:16 UTC (rev 51955)
@@ -763,6 +763,8 @@
- golang-1.8 <unfixed> (bug #863307)
- golang-1.7 <unfixed> (bug #863308)
- golang <removed>
+ [wheezy] - golang <not-affected> (Vulnerable code not present, no ASM implementation of the p256 elliptic curve)
+ [jessie] - golang <not-affected> (Vulnerable code not present, no ASM implementation of the p256 elliptic curve)
NOTE: Upstream issue: https://github.com/golang/go/issues/20040
NOTE: Upstream patch: https://golang.org/cl/41070
NOTE: Fix for 1.7: https://go-review.googlesource.com/c/43773
More information about the Secure-testing-commits
mailing list