[Secure-testing-commits] r35938 - data/CVE

Salvatore Bonaccorso Sat, 08 Aug 2015 04:52:03 -0700

Author: carnil
Date: 2015-08-08 11:51:30 +0000 (Sat, 08 Aug 2015)
New Revision: 35938


Modified:
   data/CVE/list
Log:
Add a note for CVE-2009-5147, add TODO check item

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-08-08 10:09:29 UTC (rev 35937)
+++ data/CVE/list       2015-08-08 11:51:30 UTC (rev 35938)
@@ -10053,6 +10053,11 @@
        - ruby2.1 <unfixed>
        - ruby2.2 <unfixed>
        NOTE: 
https://github.com/ruby/ruby/commit/4600cf725a86ce31266153647ae5aa1197b1215b
+       NOTE: Although the is upstream commit mentioned, the corresponding 
change does not
+       NOTE: seem to be contained in e.g. latest 1.9.1 and 2.2. E.g.
+       NOTE: 
https://sources.debian.net/src/ruby2.1/2.1.5-4/ext/dl/handle.c/#L120 does
+       NOTE: contain the change.
+       TODO: check
 CVE-2009-5146 [memory leak in hostname TLS extension]
        RESERVED
        - openssl 0.9.8k-1


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r35938 - data/CVE

Reply via email to