[Git][security-tracker-team/security-tracker][master] disassociate CVE-2010-0928 from src:openssl, should rather be rejected, but unlikely to happen

Wed, 05 Jun 2024 01:51:17 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
40c56572 by Moritz Muehlenhoff at 2024-06-05T10:50:14+02:00
disassociate CVE-2010-0928 from src:openssl, should rather be rejected, but 
unlikely to happen

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -650491,7 +650491,6 @@ CVE-2010-XXXX [phpbb 3.0.7 permissions bypass]
        [squeeze] - phpbb3 <not-affected> (older version is in the archive)
        NOTE: http://www.phpbb.com/community/viewtopic.php?f=14&t=2014195
 CVE-2010-0928 (OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx 
Virtex- ...)
-       - openssl <unfixed> (unimportant)
        NOTE: 
http://www.eecs.umich.edu/~valeria/research/publications/DATE10RSA.pdf
        NOTE: https://github.com/openssl/openssl/discussions/24540
        NOTE: Fault injection based attacks are not within OpenSSLs threat 
model according



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40c565726da05acf0b646cac40e7a5b16db59312

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40c565726da05acf0b646cac40e7a5b16db59312
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to