Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3cdb191e by Moritz Muehlenhoff at 2019-02-26T18:29:53Z
alos track src:openssl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19883,12 +19883,13 @@ CVE-2019-1560
CVE-2019-1559 [0-byte record padding oracle]
RESERVED
- openssl1.0 <unfixed>
+ - openssl 1.1.0b-2
NOTE: OpenSSL_1_0_2-stable:
https://git.openssl.org/?p=openssl.git;a=commit;h=e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e
NOTE: OpenSSL_1_0_2-stable:
https://git.openssl.org/?p=openssl.git;a=commit;h=48c8bcf5bca0ce7751f49599381e143de1b61786
NOTE: OpenSSL_1_1_0-stable:
https://git.openssl.org/?p=openssl.git;a=commit;h=5741d5bb74797e4532acc9f42e54c44a2726c179
(only hardening)
NOTE: 1.1.0 is not impacted by CVE-2019-1559. The CVE is a result of
applications
NOTE: calling SSL_shutdown after a fatal alert has occurred. 1.1.0 is
not vulnerable
- NOTE: to this issue.
+ NOTE: to this issue, marking first 1.1 upload of src:openssl as fixed
NOTE: https://www.openssl.org/news/secadv/20190226.txt
CVE-2019-1558
RESERVED
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3cdb191e8d96f6720fd0fef3882d4d6e03e0038d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3cdb191e8d96f6720fd0fef3882d4d6e03e0038d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
