CVE-2010-3613 Reduce complexity from M to L raising score from 7.1 to 7.8.

author Mark Andrews <marka@isc.org>

Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)

committer Mark Andrews <marka@isc.org>

Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)
author Mark Andrews <marka@isc.org>
Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)
committer Mark Andrews <marka@isc.org>
Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)
diff --git a/CHANGES b/CHANGES

index 81de3b314269c97451306450aa4bb84ac6a3a819..4fbd62f5ca1966ead8c36a3da06a7a15a7f7abbe 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -6,7 +6,7 @@
                         unexpected RRSIG was also returned with the NO DATA
                         cache entry.
  
-                       CVSS: 7.1 (AV:N/AC:M/Au:N/C:N/I:N/A:C/E:P/RL:O/RC:C)
+                       CVSS: 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
                         CVE-2010-3613, VU#706148. [RT #22288]
  
  2968.  [security]      Named could fail to prove a data set was insecure
@@ -14,7 +14,7 @@
                         that can trigger this occurs naturally when rolling
                         DNSKEY algorithms.
  
-                       CVSS: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N/E:P/RL:O/RC:C)
+                       CVSS: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
                         CVE-2010-3614, VU#837744. [RT #22309]
  
  2966.  [bug]           isc_print_vsnprintf() failed to check if there was
author	Mark Andrews <marka@isc.org>
	Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)
committer	Mark Andrews <marka@isc.org>
	Thu, 25 Nov 2010 04:55:50 +0000 (04:55 +0000)