[Git][security-tracker-team/security-tracker][master] Update information on gnutls28 issue

Thu Apr 2 16:43:26 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0de1b4bb by Salvatore Bonaccorso at 2020-04-02T17:42:51+02:00
Update information on gnutls28 issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,11 @@
 CVE-2020-XXXX [DTLS client hello contains a random value of all zeroes]
 	- gnutls28 <unfixed> (bug #955556)
+	[stretch] - gnutls28 <not-affected> (Vulnerable code introduced later)
+	[jessie] - gnutls28 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://gitlab.com/gnutls/gnutls/-/issues/960
 	NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2020-03-31
-	NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/c01011c2d8533dbbbe754e49e256c109cb848d0d
-	NOTE: Broken-by: https://gitlab.com/gnutls/gnutls/-/commit/bcf4de0371efbdf0846388e2df0cb14b5db09954
+	NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/c01011c2d8533dbbbe754e49e256c109cb848d0d (3.6.13)
+	NOTE: Broken-by: https://gitlab.com/gnutls/gnutls/-/commit/bcf4de0371efbdf0846388e2df0cb14b5db09954 (gnutls_3_6_3)
 CVE-2020-11482
 	RESERVED
 CVE-2020-11481



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0de1b4bb031d3e47c42ae8b82693e63bdba124c5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0de1b4bb031d3e47c42ae8b82693e63bdba124c5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200402/82bc022c/attachment.html>
