diff options
author | Stefan Fritsch <sf@debian.org> | 2009-11-24 22:14:59 +0000 |
---|---|---|
committer | Stefan Fritsch <sf@debian.org> | 2009-11-24 22:14:59 +0000 |
commit | cc84e83ccb244cad26f613f267d55f566f03a3ba (patch) | |
tree | fd50cdcd8c14dfffe1d0b18b7cac68c4214a117a /data | |
parent | 0be8914d61bad27826252ffc7c9ff2dc4a98ef7f (diff) |
more TLS updates
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13370 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE-2009-3555 | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE-2009-3555 b/data/CVE-2009-3555 index 245f9e29c5..f2573c1bda 100644 --- a/data/CVE-2009-3555 +++ b/data/CVE-2009-3555 @@ -20,9 +20,13 @@ SSL implementations in the archive: - openjdk-6 - sun-java5 - sun-java6 -- libapache-mod-ssl (oldstable only) Applications, which have been modified: - proftpd-dfsg -> Disabled SSL/TLS renegotiations in 1.3.2b-2 in unstable - apache2 -> Disabled client-initiated SSL/TLS renegs in 2.2.14-2, only partial fix, also issued as DSA 1934 for stable -- tomcat-native -> 1.1.18-1
\ No newline at end of file +- tomcat-native -> 1.1.18-1 + +Candidates for modification: +- nginx: disables renegotiation in 0.7.64, bug #557873, + patch at http://sysoev.ru/nginx/patch.cve-2009-3555.txt +- libapache-mod-ssl (oldstable only) bug #556942, no patch yet |