diff options
Diffstat (limited to 'security/vuxml/vuln/2023.xml')
| -rw-r--r-- | security/vuxml/vuln/2023.xml | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/security/vuxml/vuln/2023.xml b/security/vuxml/vuln/2023.xml index 9d6a9444af0b..0e917c8c007b 100644 --- a/security/vuxml/vuln/2023.xml +++ b/security/vuxml/vuln/2023.xml @@ -1852,7 +1852,7 @@ Reported by Niccolo Belli and WIPocket (Github #400, #417). </affects> <description> <body xmlns="http://www.w3.org/1999/xhtml"> - <p>SO-AND-SO reports:</p> + <p>The OpenSSL team reports:</p> <blockquote cite="https://www.openssl.org/news/secadv/20231024.txt"> <p>Moderate severity: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to @@ -5516,7 +5516,7 @@ Reported by Niccolo Belli and WIPocket (Github #400, #417). <affects> <package> <name>krb5</name> - <range><lt>1.21.1_1</lt></range> + <range><gt>1.20</gt><lt>1.21.1_1</lt></range> </package> <package> <name>krb5-121</name> @@ -5524,12 +5524,12 @@ Reported by Niccolo Belli and WIPocket (Github #400, #417). </package> <package> <name>krb5-devel</name> - <range><lt>1.22.2023.08.07</lt></range> + <range><gt>1.20</gt><lt>1.22.2023.08.07</lt></range> </package> </affects> <description> <body xmlns="http://www.w3.org/1999/xhtml"> - <p>SO-AND-SO reports:</p> + <p>The MIT krb5 Team reports:</p> <blockquote cite="https://github.com/krb5/krb5/commit/88a1701b423c13991a8064feeb26952d3641d840"> <p>When issuing a ticket for a TGS renew or validate request, copy only the server field from the outer part of the header ticket |