===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata57.html,v
retrieving revision 1.14
retrieving revision 1.15
diff -c -r1.14 -r1.15
*** www/errata57.html 2015/06/11 18:10:53 1.14
--- www/errata57.html 2015/06/11 22:45:21 1.15
***************
*** 191,196 ****
--- 191,201 ----
CVE-2015-1789 - Exploitable out-of-bounds read in X509_cmp_time
CVE-2015-1792 - CMS verify infinite loop with unknown hash function
+ Note that CMS was already disabled in LibreSSL.
+ Several other issues did not apply or were already fixed and one is under review.
+ For more information, see the
+ OpenSSL advisory.
+
A source code patch exists which remedies this problem.