security/vuxml: Update recent OpenSSL vuln (add LibreSSL)

- Add libressl and libressl-devel
author: brnrd <brnrd@FreeBSD.org> 2016-09-28 05:00:05 +0800
committer: brnrd <brnrd@FreeBSD.org> 2016-09-28 05:00:05 +0800
commit: 5b4710e023e6f09c8b18178255b3214f793db3e3 (patch)
tree: 04c023327370fbc3e9425fb3f5b0b5781024d642
parent: dafaa38f47629ac5b2e76545860ea89fac78d809 (diff)
download: freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.tar.gz
freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.tar.zst
freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 006f229bce6e..64117f9c1dfc 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -69,6 +69,14 @@ Notes:
 	<name>openssl-devel</name>
 	<range><lt>1.1.0b</lt></range>
       </package>
+      <package>
+	<name>libressl</name>
+	<range><lt>2.4.3</lt></range>
+      </package>
+      <package>
+	<name>libressl-devel</name>
+	<range><lt>2.4.3</lt></range>
+      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
@@ -129,6 +137,7 @@ Notes:
 	  <p>Certificate message OOB reads</p>
 	  <p>Excessive allocation of memory in tls_get_message_header()</p>
 	  <p>Excessive allocation of memory in dtls1_preprocess_fragment()</p>
+	  <p>NB: LibreSSL is only affected by CVE-2016-6304</p>
 	</blockquote>
       </body>
     </description>
author	brnrd <brnrd@FreeBSD.org>	2016-09-28 05:00:05 +0800
committer	brnrd <brnrd@FreeBSD.org>	2016-09-28 05:00:05 +0800
commit	5b4710e023e6f09c8b18178255b3214f793db3e3 (patch)
tree	04c023327370fbc3e9425fb3f5b0b5781024d642
parent	dafaa38f47629ac5b2e76545860ea89fac78d809 (diff)
download	freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.tar.gz freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.tar.zst freebsd-ports-gnome-5b4710e023e6f09c8b18178255b3214f793db3e3.zip