svn commit: r391385 - head/security/vuxml
Mark Felder
feld at FreeBSD.org
Mon Jul 6 03:21:33 UTC 2015
Author: feld
Date: Mon Jul 6 03:21:32 2015
New Revision: 391385
URL: https://svnweb.freebsd.org/changeset/ports/391385
Log:
Document bitcoin CVE-2015-3641
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Mon Jul 6 03:10:51 2015 (r391384)
+++ head/security/vuxml/vuln.xml Mon Jul 6 03:21:32 2015 (r391385)
@@ -57,6 +57,38 @@ Notes:
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="d7b9a28d-238c-11e5-86ff-14dae9d210b8">
+ <topic>bitcoin -- denial of service</topic>
+ <affects>
+ <package>
+ <name>bitcoin</name>
+ <range><lt>10.0.2</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Gregory Maxwell reports:</p>
+ <blockquote cite="http://bitcoin-development.narkive.com/tO8M0R0j/upcoming-dos-vulnerability-announcements-for-bitcoin-core">
+ <p>On July 7th I will be making public details of several
+ serious denial of service vulnerabilities which have fixed in recent
+ versions of Bitcoin Core, including including CVE-2015-3641.
+
+ I strongly recommend anyone running production nodes exposed to inbound
+ connections from the internet upgrade to 0.10.2 as soon as possible.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2015-3641</cvename>
+ <url>http://bitcoin-development.narkive.com/tO8M0R0j/upcoming-dos-vulnerability-announcements-for-bitcoin-core</url>
+ <url>https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures</url>
+ </references>
+ <dates>
+ <discovery>2015-06-27</discovery>
+ <entry>2015-07-06</entry>
+ </dates>
+ </vuln>
+
<vuln vid="864e6f75-2372-11e5-86ff-14dae9d210b8">
<topic>node -- denial of service</topic>
<affects>
More information about the svn-ports-head
mailing list