Advisory on CVE 2014-0195 not listed on main vulnerabilities page

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

Advisory on CVE 2014-0195 not listed on main vulnerabilities page

Jakob Bohm-7
Dear OpenSSL web page subteam,

CVE 2014-0195 is listed in

   https://www.openssl.org/news/secadv_20140605.txt

as fixed by the latest round of security fixes, however it is
missing from the primary cross reference at

   https://www.openssl.org/news/vulnerabilities.html

You may wish to update the page to reflect this part of the
advisory.

This was also mentioned by Mr. Nageswar in an unanswered message
14 days ago.

Enjoy

Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S.  http://www.wisemo.com
Transformervej 29, 2730 Herlev, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]
Reply | Threaded
Open this post in threaded view
|

Re: Advisory on CVE 2014-0195 not listed on main vulnerabilities page

Geoff Thorpe
Hi Jakob,

Thanks - I think this has now been corrected, the website should sync within an hour or so. Please let me know if you see anything amiss.

Cheers,
Geoff



On Mon, Jun 23, 2014 at 8:15 AM, Jakob Bohm <[hidden email]> wrote:
Dear OpenSSL web page subteam,

CVE 2014-0195 is listed in

  https://www.openssl.org/news/secadv_20140605.txt

as fixed by the latest round of security fixes, however it is
missing from the primary cross reference at

  https://www.openssl.org/news/vulnerabilities.html

You may wish to update the page to reflect this part of the
advisory.

This was also mentioned by Mr. Nageswar in an unanswered message
14 days ago.

Enjoy

Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S.  http://www.wisemo.com
Transformervej 29, 2730 Herlev, Denmark.  Direct <a href="tel:%2B45%2031%2013%2016%2010" value="+4531131610" target="_blank">+45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]


Reply | Threaded
Open this post in threaded view
|

RE: Advisory on CVE 2014-0195 not listed on main vulnerabilities page

Scott Neugroschl-2

CVE-2014-0198 is listed in the VULNERABILITIES page as fixed in 1.0.1h and 1.0.0m , but is not listed on the Release Notes for either of these releases.

 

From: [hidden email] [mailto:[hidden email]] On Behalf Of Geoffrey Thorpe
Sent: Monday, June 23, 2014 11:59 AM
To: [hidden email]
Cc: [hidden email]
Subject: Re: Advisory on CVE 2014-0195 not listed on main vulnerabilities page

 

Hi Jakob,

 

Thanks - I think this has now been corrected, the website should sync within an hour or so. Please let me know if you see anything amiss.

 

Cheers,

Geoff

 

 

On Mon, Jun 23, 2014 at 8:15 AM, Jakob Bohm <[hidden email]> wrote:

Dear OpenSSL web page subteam,

CVE 2014-0195 is listed in

  https://www.openssl.org/news/secadv_20140605.txt

as fixed by the latest round of security fixes, however it is
missing from the primary cross reference at

  https://www.openssl.org/news/vulnerabilities.html

You may wish to update the page to reflect this part of the
advisory.

This was also mentioned by Mr. Nageswar in an unanswered message
14 days ago.

Enjoy

Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S.  http://www.wisemo.com
Transformervej 29, 2730 Herlev, Denmark.  Direct <a href="tel:%2B45%2031%2013%2016%2010" target="_blank"> +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [hidden email]
Automated List Manager                           [hidden email]