[Secure-testing-commits] r58330 - data/CVE

Salvatore Bonaccorso Thu, 07 Dec 2017 06:37:08 -0800

Author: carnil
Date: 2017-12-07 14:36:37 +0000 (Thu, 07 Dec 2017)
New Revision: 58330


Modified:
   data/CVE/list
Log:
Add CVE-2017-3738

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-07 14:34:28 UTC (rev 58329)
+++ data/CVE/list       2017-12-07 14:36:37 UTC (rev 58330)
@@ -43462,8 +43462,11 @@
        NOT-FOR-US: Lenovo
 CVE-2017-3739
        RESERVED
-CVE-2017-3738
+CVE-2017-3738 [rsaz_1024_mul_avx2 overflow bug on x86_64]
        RESERVED
+       - openssl <unfixed>
+       - openssl1.0 <unfixed>
+       NOTE: https://www.openssl.org/news/secadv/20171207.txt
 CVE-2017-3737 [Read/write after SSL object in error state]
        RESERVED
        - openssl 1.1.0b-2


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58330 - data/CVE

Reply via email to