[Git][security-tracker-team/security-tracker][master] Add bouncycastle CVEs

Mon Jun 4 21:34:09 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
63bfe0ab by Salvatore Bonaccorso at 2018-06-04T22:33:03+02:00
Add bouncycastle CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -21,15 +21,21 @@ CVE-2018-11708
 CVE-2018-1002101
 	RESERVED
 CVE-2016-1000343 (In the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key ...)
-	TODO: check
+	- bouncycastle 1.56-1
+	NOTE: https://github.com/bcgit/bc-java/commit/50a53068c094d6cff37659da33c9b4505becd389#diff-5578e61500abb2b87b300d3114bdfd7d
 CVE-2016-1000342 (In the Bouncy Castle JCE Provider version 1.55 and earlier ECDSA does ...)
-	TODO: check
+	- bouncycastle 1.56-1
+	NOTE: https://github.com/bcgit/bc-java/commit/843c2e60f67d71faf81d236f448ebbe56c62c647#diff-25c3c78db788365f36839b3f2d3016b9
 CVE-2016-1000341 (In the Bouncy Castle JCE Provider version 1.55 and earlier DSA ...)
-	TODO: check
+	- bouncycastle 1.56-1
+	NOTE: https://github.com/bcgit/bc-java/commit/acaac81f96fec91ab45bd0412beaf9c3acd8defa#diff-e75226a9ca49217a7276b29242ec59ce
 CVE-2016-1000340 (In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry ...)
-	TODO: check
+	- bouncycastle 1.56-1
+	NOTE: https://github.com/bcgit/bc-java/commit/790642084c4e0cadd47352054f868cc8397e2c00#diff-e5934feac8203ca0104ab291a3560a31
 CVE-2016-1000339 (In the Bouncy Castle JCE Provider version 1.55 and earlier the primary ...)
-	TODO: check
+	- bouncycastle 1.56-1
+	NOTE: https://github.com/bcgit/bc-java/commit/413b42f4d770456508585c830cfcde95f9b0e93b#diff-54656f860db94b867ba7542430cd2ef0
+	NOTE: https://github.com/bcgit/bc-java/commit/8a73f08931450c17c749af067b6a8185abdfd2c0#diff-494fb066bed02aeb76b6c005632943f2
 CVE-2018-11707
 	RESERVED
 CVE-2018-11706



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/63bfe0ab6b5ca01cc9766306a393c596354a9a7c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/63bfe0ab6b5ca01cc9766306a393c596354a9a7c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180604/b145c53f/attachment.html>
