diff options
author | Utkarsh Gupta <utkarsh@debian.org> | 2021-03-29 17:11:05 +0530 |
---|---|---|
committer | Utkarsh Gupta <utkarsh@debian.org> | 2021-03-29 17:11:05 +0530 |
commit | a6e89e6f21ad43e30bea986a0628d2aa356d149a (patch) | |
tree | 880544bc2403f9870e1dc739caa34a87eadc09b1 | |
parent | 3f5681d865e2df3826eb4dc26302040b703ceb5a (diff) |
Mark CVE-2021-3449/openssl as not-affected for stretch
-rw-r--r-- | data/CVE/2021.list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 117741673e..57901e8fac 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -1603,6 +1603,7 @@ CVE-2021-28661 CVE-2021-3449 (An OpenSSL TLS server may crash if sent a maliciously crafted renegoti ...) {DSA-4875-1} - openssl 1.1.1k-1 + [stretch] - openssl <not-affected> (Vulnerable code introduced later) - openssl1.0 <not-affected> (Vulnerability does not impact 1.0.2 series) NOTE: https://www.openssl.org/news/secadv/20210325.txt NOTE: Introduced by: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c589c34e619c8700ab16b152dd9c8ee58356b319 (OpenSSL_1_1_1-pre1) |