Author: derevko-guest
Date: 2009-06-01 12:59:57 +0000 (Mon, 01 Jun 2009)
New Revision: 12008
Modified:
data/CVE/list
Log:
openssl issues fixed in unstable
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-06-01 12:44:42 UTC (rev 12007)
+++ data/CVE/list 2009-06-01 12:59:57 UTC (rev 12008)
@@ -1108,13 +1108,13 @@
CVE-2009-1380
RESERVED
CVE-2009-1379 (Use-after-free vulnerability in the
dtls1_retrieve_buffered_fragment ...)
- - openssl <unfixed> (low; bug #530400)
+ - openssl 0.9.8k-1 (low; bug #530400)
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1378 (Multiple memory leaks in the dtls1_process_out_of_seq_message
function ...)
- - openssl <unfixed> (low; bug #530400)
+ - openssl 0.9.8k-1 (low; bug #530400)
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1377 (The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL
0.9.8k and ...)
- - openssl <unfixed> (low; bug #530400)
+ - openssl 0.9.8k-1 (low; bug #530400)
- openssl097 <not-affected> (DTLS support was introduced in 0.9.8)
CVE-2009-1376 (Multiple integer overflows in the msn_slplink_process_msg
functions in ...)
{DSA-1805-1}