Moritz Muehlenhoff
2012-Jun-16 15:49 UTC
[Secure-testing-commits] r19504 - in data: CVE DSA
Author: jmm
Date: 2012-06-16 15:49:07 +0000 (Sat, 16 Jun 2012)
New Revision: 19504
Modified:
data/CVE/list
data/DSA/list
Log:
openconnect DSA
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-06-16 15:41:40 UTC (rev 19503)
+++ data/CVE/list 2012-06-16 15:49:07 UTC (rev 19504)
@@ -1866,7 +1866,7 @@
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=761200
CVE-2012-2668 [openldap does not honor TLSCipherSuite settings]
RESERVED
- - openldap <not-affected> (we do not use Mozilla NSS backend, see
#676309)
+ - openldap <not-affected> (OpenLDAP in Debian uses GNUTLS instead of
Mozilla NSS)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=825875
NOTE: http://www.openldap.org/its/index.cgi?findid=7285
NOTE:
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=2c2bb2e
Modified: data/DSA/list
==================================================================---
data/DSA/list 2012-06-16 15:41:40 UTC (rev 19503)
+++ data/DSA/list 2012-06-16 15:49:07 UTC (rev 19504)
@@ -1,3 +1,6 @@
+[16 Jun 2012] DSA-2495-1 openconnect - buffer overflow
+ {CVE-2012-3291}
+ [squeeze] - openconnect 2.25-0.1+squeeze1
[12 Jun 2012] DSA-2494-1 ffmpeg - several
{CVE-2011-3951 CVE-2011-3952 CVE-2012-0851 CVE-2012-0852}
[squeeze] - ffmpeg 4:0.5.9-1