[Secure-testing-commits] r57246 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Nov 2 15:16:11 UTC 2017
Author: jmm
Date: 2017-11-02 15:16:11 +0000 (Thu, 02 Nov 2017)
New Revision: 57246
Modified:
data/CVE/list
Log:
openssl fixes
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-02 15:08:15 UTC (rev 57245)
+++ data/CVE/list 2017-11-02 15:16:11 UTC (rev 57246)
@@ -37464,6 +37464,8 @@
- openssl <unfixed>
- openssl1.0 <unfixed>
NOTE: https://www.openssl.org/news/secadv/20171102.txt
+ NOTE: Fix for 1.0.2: https://git.openssl.org/?p=openssl.git;a=commit;h=38d600147331d36e74174ebbd4008b63188b321b
+ NOTE: Fix for 1.1.0: https://git.openssl.org/?p=openssl.git;a=commit;h=4443cf7aa0099e5ce615c18cee249fff77fb0871
CVE-2017-3735 (While parsing an IPAddressFamily extension in an X.509 certificate, it ...)
- openssl <unfixed>
[stretch] - openssl <postponed> (Can be fixed with the next openssl security release)
More information about the Secure-testing-commits
mailing list