===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.407
retrieving revision 1.408
diff -u -r1.407 -r1.408
--- www/security.html 2014/03/30 01:39:10 1.407
+++ www/security.html 2014/04/08 16:39:01 1.408
@@ -231,6 +231,9 @@
March 15, 2014:
Memory corruption happens during
ICMP reflection handling. ICMP reflection is disabled by default.
+April 7, 2014:
+ Missing bounds checking in OpenSSL's implementation of the TLS/DTLS
+ heartbeat extension (RFC6520) which can result in a leak of memory contents.
@@ -251,6 +254,9 @@
January 10, 2014:
Buffer overflow in parsing of BDF font files
(CVE-2013-6462).
+April 7, 2014:
+ Missing bounds checking in OpenSSL's implementation of the TLS/DTLS
+ heartbeat extension (RFC6520) which can result in a leak of memory contents.
@@ -271,6 +277,9 @@
January 10, 2014:
Buffer overflow in parsing of BDF font files
(CVE-2013-6462).
+April 7, 2014:
+ Missing bounds checking in OpenSSL's implementation of the TLS/DTLS
+ heartbeat extension (RFC6520) which can result in a leak of memory contents.