Author: carnil
Date: 2015-05-31 13:21:43 +0000 (Sun, 31 May 2015)
New Revision: 34609
Modified:
data/CVE/list
Log:
Mark CVE-2015-3420 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-31 13:12:12 UTC (rev 34608)
+++ data/CVE/list 2015-05-31 13:21:43 UTC (rev 34609)
@@ -1820,6 +1820,8 @@
CVE-2015-3420 [SSL/TLS handshake failures leading to a crash of the login
process]
RESERVED
- dovecot 1:2.2.13-12 (bug #783649)
+ [jessie] - dovecot <no-dsa> (Minor issue, can be fixed through a pu
although introduced via security update)
+ [wheezy] - dovecot <no-dsa> (Minor issue, can be fixed through a pu
although introduced via security update)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/26/3
NOTE: Patch: http://hg.dovecot.org/dovecot-2.2/rev/86f535375750
NOTE: Segfault reproducible if using openssl/1.0.2a-1 from sid.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
