[Secure-testing-commits] r56371 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Oct 2 22:36:48 UTC 2017
Author: jmm
Date: 2017-10-02 22:36:48 +0000 (Mon, 02 Oct 2017)
New Revision: 56371
Modified:
data/CVE/list
Log:
remove haskell-tls entry
it was never clarified whether haskell-tls was actually affected by
this issue in particular, instead all tls implementations were simply
listed. in the bug log, the upstream maintainers are not certain of
being affected either, so dropping this unless a specific vulnerability
in haskell-tls can ne shown
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-02 21:30:10 UTC (rev 56370)
+++ data/CVE/list 2017-10-02 22:36:48 UTC (rev 56371)
@@ -144303,10 +144303,6 @@
[squeeze] - gnutls26 <no-dsa> (Too intrusive to backport)
- gnutls28 3.0.22-3
- cyassl 2.9.4+dfsg-1
- - haskell-tls <unfixed> (bug #796342)
- [stretch] - haskell-tls <no-dsa> (Minor issue)
- [jessie] - haskell-tls <no-dsa> (Minor issue)
- [wheezy] - haskell-tls <no-dsa> (Minor issue)
- matrixssl <removed> (low)
[squeeze] - matrixssl <no-dsa> (Minor issue)
[wheezy] - matrixssl <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list