diff options
| author | dvl <dvl@FreeBSD.org> | 2015-03-25 21:13:57 +0800 |
|---|---|---|
| committer | dvl <dvl@FreeBSD.org> | 2015-03-25 21:13:57 +0800 |
| commit | b871a8fa1506a74e14b36b796ae2d393d56e2aa6 (patch) | |
| tree | 05ba11ff34134aedb7bb586eda842b144bad7cfb /security | |
| parent | a3dc7eba8769c4501af32b65a004ca27bd336786 (diff) | |
| download | freebsd-ports-gnome-b871a8fa1506a74e14b36b796ae2d393d56e2aa6.tar.gz freebsd-ports-gnome-b871a8fa1506a74e14b36b796ae2d393d56e2aa6.tar.zst freebsd-ports-gnome-b871a8fa1506a74e14b36b796ae2d393d56e2aa6.zip | |
Revert my previous commit.
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 9a3134bf331f..7b6a0acc91cf 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -504,8 +504,8 @@ Notes: <body xmlns="http://www.w3.org/1999/xhtml"> <p>The Mono project reports:</p> <blockquote cite="http://www.mono-project.com/docs/about-mono/vulnerabilities/#tls-bugs"> - <p>Mono's implementation of the SSL/TLS stack failed to check the order of the handshake messages. Which would allow various attacks on the protocol to succeed. Details of this vulnerability are discussed in <a href="https://www.smacktls.com/#skip">SKIP-TLS post</a>.</p> - <p>Mono's implementation of SSL/TLS also contained support for the weak EXPORT cyphers and was susceptible to the <a href="https://www.smacktls.com/#freak">FREAK</a> attack.</p> + <p>Mono’s implementation of the SSL/TLS stack failed to check the order of the handshake messages. Which would allow various attacks on the protocol to succeed. Details of this vulnerability are discussed in <a href="https://www.smacktls.com/#skip">SKIP-TLS post</a>.</p> + <p>Mono’s implementation of SSL/TLS also contained support for the weak EXPORT cyphers and was susceptible to the <a href="https://www.smacktls.com/#freak">FREAK</a> attack.</p> </blockquote> </body> </description> |