Author: corsac Date: 2014-09-24 23:00:59 +0000 (Wed, 24 Sep 2014) New Revision: 29021
Modified: data/CVE/list Log: add notes about cyassl and gnutls Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-09-24 22:55:56 UTC (rev 29020) +++ data/CVE/list 2014-09-24 23:00:59 UTC (rev 29021) @@ -1,3 +1,10 @@ +CVE-2014-XXXX [cyassl: RSA Padding check vulnerability] + - cyassl <unfixed> + NOTE: http://www.yassl.com/yaSSL/Blog/Entries/2014/9/12_CyaSSL_3.2.0_Released.html + NOTE: looks similar to CVE-2014-1568 in nss +CVE-2014-XXXX [gnutls: certificate sanitization issue] + NOTE: http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7663 + NOTE: looks similar to CVE-2014-1568 in nss CVE-2014-XXXX [mediawiki: releases 1.19.19, 1.22.11 and 1.23.4] - mediawiki <unfixed> (bug #762754) [wheezy] - mediawiki <unfixed> (bug #762754) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
