Author: kroeckx
Date: 2017-01-26 22:16:08 +0000 (Thu, 26 Jan 2017)
New Revision: 48440
Modified:
data/CVE/list
Log:
OpenSSL fixes in unstable.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-26 21:16:13 UTC (rev 48439)
+++ data/CVE/list 2017-01-26 22:16:08 UTC (rev 48440)
@@ -4673,17 +4673,17 @@
RESERVED
CVE-2017-3732
RESERVED
- - openssl <unfixed>
- - openssl1.0 <unfixed>
+ - openssl 1.1.0d-1
+ - openssl1.0 1.0.2k-1
NOTE: https://www.openssl.org/news/secadv/20170126.txt
CVE-2017-3731
RESERVED
- - openssl <unfixed>
- - openssl1.0 <unfixed>
+ - openssl 1.1.0d-1
+ - openssl1.0 1.0.2k-1
NOTE: https://www.openssl.org/news/secadv/20170126.txt
CVE-2017-3730
RESERVED
- - openssl <unfixed>
+ - openssl 1.1.0d-1
[jessie] - openssl <not-affected> (Only affects OpenSSL 1.1)
[wheezy] - openssl <not-affected> (Only affects OpenSSL 1.1)
- openssl1.0 <not-affected> (Only affects OpenSSL 1.1)
@@ -21679,7 +21679,7 @@
- openssl 1.1.0c-1 (low)
[jessie] - openssl <not-affected> (Only affects 1.0.2 and 1.1.0)
[wheezy] - openssl <not-affected> (Only affects 1.0.2 and 1.1.0)
- - openssl1.0 <unfixed> (low)
+ - openssl1.0 1.0.2k-1 (low)
NOTE: https://www.openssl.org/news/secadv/20161110.txt
NOTE:
https://git.openssl.org/?p=openssl.git;a=commit;h=2fac86d9abeaa643677d1ffd0a139239fdf9406a
CVE-2016-7054 [ChaCha20/Poly1305 heap-buffer-overflow]
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
