[Git][security-tracker-team/security-tracker][master] alos track src:openssl
Moritz Muehlenhoff
jmm at debian.org
Tue Feb 26 18:30:17 GMT 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3cdb191e by Moritz Muehlenhoff at 2019-02-26T18:29:53Z
alos track src:openssl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19883,12 +19883,13 @@ CVE-2019-1560
CVE-2019-1559 [0-byte record padding oracle]
RESERVED
- openssl1.0 <unfixed>
+ - openssl 1.1.0b-2
NOTE: OpenSSL_1_0_2-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e
NOTE: OpenSSL_1_0_2-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=48c8bcf5bca0ce7751f49599381e143de1b61786
NOTE: OpenSSL_1_1_0-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=5741d5bb74797e4532acc9f42e54c44a2726c179 (only hardening)
NOTE: 1.1.0 is not impacted by CVE-2019-1559. The CVE is a result of applications
NOTE: calling SSL_shutdown after a fatal alert has occurred. 1.1.0 is not vulnerable
- NOTE: to this issue.
+ NOTE: to this issue, marking first 1.1 upload of src:openssl as fixed
NOTE: https://www.openssl.org/news/secadv/20190226.txt
CVE-2019-1558
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3cdb191e8d96f6720fd0fef3882d4d6e03e0038d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3cdb191e8d96f6720fd0fef3882d4d6e03e0038d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190226/a4ad1155/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list