Mark CVE-2014-3566/netsurf as fixed with 3.6-1

Upstream commit b2242c57e17f ("HTTPS: disable all SSL versions; emit fallback SCSV on downgrade.") in 3.3 disables SSLv3. Later on commit a8bf9b05aa94 ("HTTPS: restrict ciphersuites") in 3.8 restricts further the cipyersuites.
author: Salvatore Bonaccorso <carnil@debian.org> 2020-07-29 11:21:01 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-07-29 11:32:06 +0200
commit: f161fdb26a5cae3952d673c06241d53a32908f1f (patch)
tree: 6d6660af8cec4ac8e72107172337d9b3a3bb0506 /data/CVE/list.2014
parent: 08c1d5b87a93e8d501334bdee961644c161e7c9a (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2014 b/data/CVE/list.2014
index e136da3cef..94239f8a31 100644
--- a/data/CVE/list.2014
+++ b/data/CVE/list.2014
@@ -17641,7 +17641,7 @@ CVE-2014-3566 (The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other
 	[squeeze] - matrixssl <no-dsa> (Minor issue)
 	[wheezy] - matrixssl <no-dsa> (Minor issue)
 	- midori <unfixed> (unimportant)
-	- netsurf <unfixed> (unimportant)
+	- netsurf 3.6-1 (unimportant)
 	- nss 2:3.17.1-1
 	[squeeze] - nss <no-dsa> (Upstream doesn't plan to disable SSLv3, stick with that)
 	[wheezy] - nss <no-dsa> (Upstream doesn't plan to disable SSLv3, stick with that)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-07-29 11:21:01 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-07-29 11:32:06 +0200
commit	f161fdb26a5cae3952d673c06241d53a32908f1f (patch)
tree	6d6660af8cec4ac8e72107172337d9b3a3bb0506 /data/CVE/list.2014
parent	08c1d5b87a93e8d501334bdee961644c161e7c9a (diff)