diff options
| author | zi <zi@FreeBSD.org> | 2012-01-21 05:43:39 +0800 |
|---|---|---|
| committer | zi <zi@FreeBSD.org> | 2012-01-21 05:43:39 +0800 |
| commit | c098e42f1e30d28733fb9b1b4e397373838c2f39 (patch) | |
| tree | deba85ff3c7b44356c6da6d81dd029e49bf8b6b7 /security | |
| parent | a654446103223a2648c05941e389f4b6bce66ef7 (diff) | |
| download | freebsd-ports-gnome-c098e42f1e30d28733fb9b1b4e397373838c2f39.tar.gz freebsd-ports-gnome-c098e42f1e30d28733fb9b1b4e397373838c2f39.tar.zst freebsd-ports-gnome-c098e42f1e30d28733fb9b1b4e397373838c2f39.zip | |
- Document security vulnerability in security/openssl (CVE-2012-0050)
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index eb7530d003b2..c791a47e8ee0 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -47,6 +47,34 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="5c5f19ce-43af-11e1-89b4-001ec9578670"> + <topic>OpenSSL -- DTLS Denial of Service</topic> + <affects> + <package> + <name>openssl</name> + <range><lt>1.0.0g</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The OpenSSL Team reports:</p> + <blockquote cite="http://www.openssl.org/news/secadv_20120118.txt"> + <p>A flaw in the fix to CVE-2011-4108 can be exploited in a + denial of service attack. Only DTLS applications using + OpenSSL 1.0.0f and 0.9.8s are affected.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2012-0050</cvename> + <url>http://www.openssl.org/news/secadv_20120118.txt</url> + </references> + <dates> + <discovery>2012-01-18</discovery> + <entry>2012-01-20</entry> + </dates> + </vuln> + <vuln vid="dd698b76-42f7-11e1-a1b6-14dae9ebcf89"> <topic>asterisk -- SRTP Video Remote Crash Vulnerability</topic> <affects> |