Date: Wed, 15 Jul 2015 23:24:38 +0000 (UTC) From: Matthias Andree <mandree@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r392243 - head/security/vuxml Message-ID: <201507152324.t6FNOcCk047991@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: mandree Date: Wed Jul 15 23:24:37 2015 New Revision: 392243 URL: https://svnweb.freebsd.org/changeset/ports/392243 Log: Add PolarSSL < 1.2.14 issues. See PR #201603 for a remedy. Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Wed Jul 15 23:00:10 2015 (r392242) +++ head/security/vuxml/vuln.xml Wed Jul 15 23:24:37 2015 (r392243) @@ -58,6 +58,34 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="d3216606-2b47-11e5-a668-080027ef73ec"> + <topic>PolarSSL -- Security Fix Backports</topic> + <affects> + <package> + <name>polarssl</name> + <range><lt>1.2.14</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>Paul Bakker reports:</p> + <blockquote cite="https://tls.mbed.org/tech-updates/releases/polarssl-1.2.14-released">; + <p>PolarSSL 1.2.14 fixes one remotely-triggerable issues that was + found by the Codenomicon Defensics tool, one potential remote crash + and countermeasures against the "Lucky 13 strikes back" cache-based + attack.</p> + </blockquote> + </body> + </description> + <references> + <url>https://tls.mbed.org/tech-updates/releases/polarssl-1.2.14-released</url>; + </references> + <dates> + <discovery>2015-06-26</discovery> + <entry>2015-07-15</entry> + </dates> + </vuln> + <vuln vid="ca139c7f-2a8c-11e5-a4a5-002590263bf5"> <topic>libwmf -- multiple vulnerabilities</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201507152324.t6FNOcCk047991>