Author: fw Date: 2010-03-29 18:21:28 +0000 (Mon, 29 Mar 2010) New Revision: 14352 Modified: data/CVE/list Log: CVE-2009-3245: openssl; revert previous change (sorry) Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-03-29 17:08:32 UTC (rev 14351) +++ data/CVE/list 2010-03-29 18:21:28 UTC (rev 14352) @@ -6858,9 +6858,8 @@ - xulrunner <unfixed> (unimportant) NOTE: browser denial-of-services are unimportant CVE-2009-3245 (OpenSSL before 0.9.8m does not check for a NULL return value from ...) - - openssl 0.9.8n-1 (low) - [lenny] - openssl <not-affected> (only 0.9.8m is affected with 16 bit shorts) - NOTE: http://www.openssl.org/news/secadv_20100324.txt + - openssl 0.9.8m-1 (low) + [lenny] - openssl <no-dsa> (minor issue) CVE-2009-3244 (Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe ...) NOT-FOR-US: Adobe ShockWave Player CVE-2009-3243 (Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and ...)