Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 70122121 by Salvatore Bonaccorso at 2018-03-28T06:31:11+02:00 Mark openssl fixes via unstable - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -22912,7 +22912,7 @@ CVE-2018-0740 RESERVED CVE-2018-0739 [Constructed ASN.1 types with a recursive definition could exceed the stack] RESERVED - - openssl <unfixed> + - openssl 1.1.0h-1 - openssl1.0 <unfixed> NOTE: https://www.openssl.org/news/secadv/20180327.txt NOTE: OpenSSL_1_1_0-stable: https://git.openssl.org/?p=openssl.git;a=commit;h=2ac4c6f7b2b2af20c0e2b0ba05367e454cd11b33 @@ -65248,7 +65248,7 @@ CVE-2017-3739 REJECTED CVE-2017-3738 (There is an overflow bug in the AVX2 Montgomery multiplication ...) {DSA-4065-1} - - openssl <unfixed> (low) + - openssl 1.1.0h-1 (low) [stretch] - openssl <postponed> (Can be fixed with next OpenSSL advisory round) [jessie] - openssl <not-affected> (Vulnerable code not present) [wheezy] - openssl <not-affected> (Vulnerable code not present) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8 --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits