nion at alioth.debian.org
2009-Jan-11 17:59 UTC
[Secure-testing-commits] r10926 - data/CVE
Author: nion Date: 2009-01-11 17:59:29 +0000 (Sun, 11 Jan 2009) New Revision: 10926 Modified: data/CVE/list Log: update on CVE-2009-0025 Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-01-11 17:45:13 UTC (rev 10925) +++ data/CVE/list 2009-01-11 17:59:29 UTC (rev 10926) @@ -800,6 +800,8 @@ RESERVED CVE-2009-0025 (BIND 9.4.3 and earlier does not properly check the return value from ...) - bind9 <unfixed> (low) + TODO: file bug + NOTE: unlike the advisory states it is DSA_do_verify not DSA_verify NOTE: low severity because it is believed hard to trigger and only NOTE: affects DNSSEC with DSA, which is supposedly rarely used. CVE-2009-0024