Author: jmm Date: 2016-03-01 14:07:06 +0000 (Tue, 01 Mar 2016) New Revision: 40095
Modified: data/CVE/list Log: two further openssl issues limited to sslv2 Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-03-01 14:06:23 UTC (rev 40094) +++ data/CVE/list 2016-03-01 14:07:06 UTC (rev 40095) @@ -6181,6 +6181,7 @@ CVE-2016-0800 RESERVED - openssl 1.0.0c-2 + NOTE: 1.0.0c-2 dropped SSLv2 support NOTE: https://www.openssl.org/news/secadv/20160301.txt NOTE: https://www.drownattack.com/ NOTE: GNUTLS never implemented SSLv2 @@ -6532,11 +6533,13 @@ NOTE: https://www.openssl.org/news/secadv/20160301.txt CVE-2016-0704 RESERVED - - openssl <unfixed> + - openssl 1.0.0c-2 + NOTE: 1.0.0c-2 dropped SSLv2 support NOTE: https://www.openssl.org/news/secadv/20160301.txt CVE-2016-0703 RESERVED - - openssl <unfixed> + - openssl 1.0.0c-2 + NOTE: 1.0.0c-2 dropped SSLv2 support NOTE: https://www.openssl.org/news/secadv/20160301.txt CVE-2016-0702 RESERVED _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits