Author: carnil
Date: 2016-08-25 05:07:14 +0000 (Thu, 25 Aug 2016)
New Revision: 44125
Modified:
data/CVE/list
Log:
Add CVE-2016-6329/openvpn, update TODO for CVE-2016-2183
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-25 05:04:38 UTC (rev 44124)
+++ data/CVE/list 2016-08-25 05:07:14 UTC (rev 44125)
@@ -1998,6 +1998,9 @@
RESERVED
CVE-2016-6329
RESERVED
+ - openvpn <unfixed>
+ NOTE: https://community.openvpn.net/openvpn/wiki/SWEET32
+ TODO: check
CVE-2016-6328
RESERVED
CVE-2016-6327
@@ -15375,7 +15378,7 @@
CVE-2016-2183
RESERVED
NOTE: The CVE is assigned for the protocol flaw in the DES/3DES cipher,
used as a part of the SSL/TLS protocol.
- TODO: not clear if this should be assigned to individual source, like
openvpn and openssl
+ TODO: not clear if this should be assigned to individual source, like
openssl and nss (openpvn got a own CVE)
CVE-2016-2182
RESERVED
- openssl <unfixed>
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
