Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
70122121 by Salvatore Bonaccorso at 2018-03-28T06:31:11+02:00
Mark openssl fixes via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -22912,7 +22912,7 @@ CVE-2018-0740
RESERVED
CVE-2018-0739 [Constructed ASN.1 types with a recursive definition could
exceed the stack]
RESERVED
- - openssl <unfixed>
+ - openssl 1.1.0h-1
- openssl1.0 <unfixed>
NOTE: https://www.openssl.org/news/secadv/20180327.txt
NOTE: OpenSSL_1_1_0-stable:
https://git.openssl.org/?p=openssl.git;a=commit;h=2ac4c6f7b2b2af20c0e2b0ba05367e454cd11b33
@@ -65248,7 +65248,7 @@ CVE-2017-3739
REJECTED
CVE-2017-3738 (There is an overflow bug in the AVX2 Montgomery multiplication
...)
{DSA-4065-1}
- - openssl <unfixed> (low)
+ - openssl 1.1.0h-1 (low)
[stretch] - openssl <postponed> (Can be fixed with next OpenSSL
advisory round)
[jessie] - openssl <not-affected> (Vulnerable code not present)
[wheezy] - openssl <not-affected> (Vulnerable code not present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/701221210f79aa143f836666726af7b9da274be8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
