Source: serf Version: 0.3.1-1 Severity: important Tags: security upstream patch fixed-upstream
Hi, the following vulnerability was published for serf. CVE-2014-3504[0]: failure to properly handle a NUL character in the CommonName or SubjectAltNames fields If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2014-3504 [1] https://bugzilla.redhat.com/show_bug.cgi?id=1128962 [2] https://code.google.com/p/serf/source/detail?r=2392 [3] https://groups.google.com/forum/#!topic/serf-dev/NvgPoK6sFsc Regards, Salvatore -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
