more TLS updates

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13370 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Stefan Fritsch <sf@debian.org> 2009-11-24 22:14:59 +0000
committer: Stefan Fritsch <sf@debian.org> 2009-11-24 22:14:59 +0000
commit: cc84e83ccb244cad26f613f267d55f566f03a3ba (patch)
tree: fd50cdcd8c14dfffe1d0b18b7cac68c4214a117a /data
parent: 0be8914d61bad27826252ffc7c9ff2dc4a98ef7f (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE-2009-3555 b/data/CVE-2009-3555
index 245f9e29c5..f2573c1bda 100644
--- a/data/CVE-2009-3555
+++ b/data/CVE-2009-3555
@@ -20,9 +20,13 @@ SSL implementations in the archive:
 - openjdk-6
 - sun-java5
 - sun-java6
-- libapache-mod-ssl (oldstable only)
 
 Applications, which have been modified:
 - proftpd-dfsg -> Disabled SSL/TLS renegotiations in 1.3.2b-2 in unstable
 - apache2 -> Disabled client-initiated SSL/TLS renegs in 2.2.14-2, only partial fix, also issued as DSA 1934 for stable
-- tomcat-native -> 1.1.18-1
-\ No newline at end of file
+- tomcat-native -> 1.1.18-1
+
+Candidates for modification:
+- nginx: disables renegotiation in 0.7.64, bug #557873,
+  patch at http://sysoev.ru/nginx/patch.cve-2009-3555.txt
+- libapache-mod-ssl (oldstable only) bug #556942, no patch yet
author	Stefan Fritsch <sf@debian.org>	2009-11-24 22:14:59 +0000
committer	Stefan Fritsch <sf@debian.org>	2009-11-24 22:14:59 +0000
commit	cc84e83ccb244cad26f613f267d55f566f03a3ba (patch)
tree	fd50cdcd8c14dfffe1d0b18b7cac68c4214a117a /data
parent	0be8914d61bad27826252ffc7c9ff2dc4a98ef7f (diff)