Yves-Alexis Perez pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9defe86a by Yves-Alexis Perez at 2018-05-14T12:12:03+02:00
add #efail CVE numbers
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -23491,10 +23491,17 @@ CVE-2017-17691
RESERVED
CVE-2017-17690
RESERVED
-CVE-2017-17689
+CVE-2017-17689 [S/MIME CBC gadget attacks]
RESERVED
-CVE-2017-17688
+ NOTE: vulnerability is in the clients handling, not in OpenPGP
+ NOTE: https://efail.de
+ TODO: check all clients
+CVE-2017-17688 [OpenPGP CFB gadget attacks]
RESERVED
+ - enigmail <unfixed>
+ NOTE: vulnerability is in the clients handling, not in OpenPGP
+ NOTE: https://efail.de
+ TODO: check all clients
CVE-2017-17687
RESERVED
CVE-2017-17686
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9defe86a23b319090bdd471e22043ccbdacae4cb
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9defe86a23b319090bdd471e22043ccbdacae4cb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
