[Secure-testing-commits] r31264 - data/CVE

Sun, 11 Jan 2015 01:16:26 -0800 

Author: sectracker
Date: 2015-01-11 09:12:12 +0000 (Sun, 11 Jan 2015)
New Revision: 31264

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-01-11 07:34:59 UTC (rev 31263)
+++ data/CVE/list       2015-01-11 09:12:12 UTC (rev 31264)
@@ -3292,12 +3292,15 @@
 CVE-2015-0207
        RESERVED
 CVE-2015-0206 (Memory leak in the dtls1_buffer_record function in d1_pkt.c in 
OpenSSL ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
        [squeeze] - openssl <not-affected> (Affects 1.0.1 and 1.0.0)
 CVE-2015-0205 (The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 
before ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
        [squeeze] - openssl <not-affected> (Only affects 1.0.1 and 1.0.0)
 CVE-2015-0204 (The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL 
before ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
 CVE-2015-0203
        RESERVED
@@ -5545,6 +5548,7 @@
 CVE-2014-8276
        RESERVED
 CVE-2014-8275 (OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 
1.0.1k ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
 CVE-2014-8274
        RESERVED
@@ -16758,17 +16762,20 @@
 CVE-2014-3573 (The oVirt Engine backend module, as used in Red Hat Enterprise 
...)
        NOT-FOR-US: oVirt Engine
 CVE-2014-3572 (The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL 
before ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=ef28c6d6767a6a30df5add36171894c96628fe98
 CVE-2014-3571 (OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 
1.0.1k ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=8d7aab986b499f34d9e1bc58fbfd77f05c38116e
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=45fe66b8ba026186aa5d8ef1e0e6010ea74d5c0b
 CVE-2014-3570 (The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 
before ...)
+       {DSA-3125-1}
        - openssl 1.0.1k-1
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=a7a44ba55cb4f884c6bc9ceac90072dea38e66d
 CVE-2014-3569 (The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 
0.9.8zc, ...)
-       {DLA-81-1}
+       {DSA-3125-1 DLA-81-1}
        - openssl 1.0.1k-1
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=6ce9687b5aba5391fc0de50e18779eb676d0e04d
 CVE-2014-3568 (OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 
1.0.1j ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to