[Git][security-tracker-team/security-tracker][master] disassociate CVE-2010-0928 from src:openssl, should rather be rejected, but unlikely to happen

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jun 5 09:51:09 BST 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
40c56572 by Moritz Muehlenhoff at 2024-06-05T10:50:14+02:00
disassociate CVE-2010-0928 from src:openssl, should rather be rejected, but unlikely to happen

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -650491,7 +650491,6 @@ CVE-2010-XXXX [phpbb 3.0.7 permissions bypass]
 	[squeeze] - phpbb3 <not-affected> (older version is in the archive)
 	NOTE: http://www.phpbb.com/community/viewtopic.php?f=14&t=2014195
 CVE-2010-0928 (OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex- ...)
-	- openssl <unfixed> (unimportant)
 	NOTE: http://www.eecs.umich.edu/~valeria/research/publications/DATE10RSA.pdf
 	NOTE: https://github.com/openssl/openssl/discussions/24540
 	NOTE: Fault injection based attacks are not within OpenSSLs threat model according



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40c565726da05acf0b646cac40e7a5b16db59312

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40c565726da05acf0b646cac40e7a5b16db59312
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240605/212547d4/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list