Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
6eb58297 by Salvatore Bonaccorso at 2018-04-16T17:49:18+02:00
Add new openssl issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -25730,8 +25730,16 @@ CVE-2018-0739 (Constructed ASN.1 types with a 
recursive definition (such as can 
        NOTE: OpenSSL_1_0_2-stable: 
https://git.openssl.org/?p=openssl.git;a=commit;h=9310d45087ae546e27e61ddf8f6367f29848220d
 CVE-2018-0738
        RESERVED
-CVE-2018-0737
-       RESERVED
+CVE-2018-0737 [Cache timing vulnerability in RSA Key Generation]
+       RESERVED
+       - openssl <unfixed> (low)
+       [stretch] - openssl <postponed> (Can wait for next DSA and upstream 
release)
+       [jessie] - openssl <postponed> (Can wait for next DSA and upstream 
release)
+       - openssl1.0 <unfixed> (low)
+       [stretch] - openssl1.0 <postponed> (Can wait for next DSA and upstream 
release)
+       NOTE: https://www.openssl.org/news/secadv/20180416.txt
+       NOTE: OpenSSL_1_1_0-stable: 
https://git.openssl.org/?p=openssl.git;a=commit;h=6939eab03
+       NOTE: OpenSSL_1_0_2-stable: 
https://git.openssl.org/?p=openssl.git;a=commit;h=349a41da1
 CVE-2018-0736
        RESERVED
 CVE-2018-0735



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6eb58297c117e20d3e4a04ac9ae5e7403d3401cb

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6eb58297c117e20d3e4a04ac9ae5e7403d3401cb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to