[Secure-testing-commits] r46098 - data/CVE

Salvatore Bonaccorso Thu, 10 Nov 2016 07:39:36 -0800

Author: carnil
Date: 2016-11-10 15:37:56 +0000 (Thu, 10 Nov 2016)
New Revision: 46098


Modified:
   data/CVE/list
Log:
Add CVE-2016-7054

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-11-10 10:22:18 UTC (rev 46097)
+++ data/CVE/list       2016-11-10 15:37:56 UTC (rev 46098)
@@ -6653,8 +6653,13 @@
        RESERVED
 CVE-2016-7055
        RESERVED
-CVE-2016-7054
+CVE-2016-7054 [ChaCha20/Poly1305 heap-buffer-overflow]
        RESERVED
+       - openssl <unfixed>
+       [jessie] - openssl <not-affected> (Only affects 1.1.0)
+       [wheezy] - openssl <not-affected> (Only affects 1.1.0)
+       - openssl1.0 <not-affected> (Only affects 1.1.0)
+       NOTE: https://www.openssl.org/news/secadv/20161110.txt
 CVE-2016-7053
        RESERVED
 CVE-2016-7052 (crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote 
attackers to ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r46098 - data/CVE

Reply via email to