[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark openssl fixes via unstable
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 28 04:31:28 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
70122121 by Salvatore Bonaccorso at 2018-03-28T06:31:11+02:00
Mark openssl fixes via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -22912,7 +22912,7 @@ CVE-2018-0740
RESERVED
CVE-2018-0739 [Constructed ASN.1 types with a recursive definition could exceed the stack]
RESERVED
- - openssl <unfixed>
+ - openssl 1.1.0h-1
- openssl1.0 <unfixed>
NOTE: https://www.openssl.org/news/secadv/20180327.txt
NOTE: OpenSSL_1_1_0-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=2ac4c6f7b2b2af20c0e2b0ba05367e454cd11b33
@@ -65248,7 +65248,7 @@ CVE-2017-3739
REJECTED
CVE-2017-3738 (There is an overflow bug in the AVX2 Montgomery multiplication ...)
{DSA-4065-1}
- - openssl <unfixed> (low)
+ - openssl 1.1.0h-1 (low)
[stretch] - openssl <postponed> (Can be fixed with next OpenSSL advisory round)
[jessie] - openssl <not-affected> (Vulnerable code not present)
[wheezy] - openssl <not-affected> (Vulnerable code not present)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180328/cd50d85e/attachment.html>
More information about the Secure-testing-commits
mailing list