aboutsummaryrefslogtreecommitdiffstats
path: root/security
diff options
context:
space:
mode:
authorrene <rene@FreeBSD.org>2014-09-25 15:34:52 +0800
committerrene <rene@FreeBSD.org>2014-09-25 15:34:52 +0800
commit1db8b4163bf1b2be4dcb7faa2e9b7d9b8cd9870a (patch)
treea04a85f8f217050138892badb9cba5b717dc7f33 /security
parent71c71b0d010081d947cfd42b7a492778c6479754 (diff)
downloadfreebsd-ports-gnome-1db8b4163bf1b2be4dcb7faa2e9b7d9b8cd9870a.tar.gz
freebsd-ports-gnome-1db8b4163bf1b2be4dcb7faa2e9b7d9b8cd9870a.tar.zst
freebsd-ports-gnome-1db8b4163bf1b2be4dcb7faa2e9b7d9b8cd9870a.zip
Document new vulnerability in www/chromium < 37.0.2062.124
Obtained from: http://googlechromereleases.blogspot.nl/ MFH: 2014Q3
Diffstat (limited to 'security')
-rw-r--r--security/vuxml/vuln.xml28
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 03885e4b4171..75c518ef9e66 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -57,6 +57,34 @@ Notes:
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="bd2ef267-4485-11e4-b0b7-00262d5ed8ee">
+ <topic>chromium -- RSA signature malleability in NSS</topic>
+ <affects>
+ <package>
+ <name>chromium</name>
+ <range><lt>37.0.2062.124</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Google Chrome Releases reports:</p>
+ <blockquote cite="http://googlechromereleases.blogspot.nl/">
+ <p>[414124] RSA signature malleability in NSS (CVE-2014-1568).
+ Thanks to Antoine Delignat-Lavaud of Prosecco/INRIA, Brian Smith
+ and Advanced Threat Research team at Intel Security</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2014-1568</cvename>
+ <url>http://googlechromereleases.blogspot.nl/</url>
+ </references>
+ <dates>
+ <discovery>2014-09-24</discovery>
+ <entry>2014-09-25</entry>
+ </dates>
+ </vuln>
+
<vuln vid="fb25333d-442f-11e4-98f3-5453ed2e2b49">
<topic>krfb -- Multiple security issues in bundled libvncserver</topic>
<affects>