From: Alan T. DeKok <aland@freeradius.org>
Date: Thu, 22 Sep 2016 15:22:45 +0000 (-0400)
Subject: Add more vulnerabilities for OpenSSL
X-Git-Tag: release_3_0_12~41
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=16fd6d12fdddc82f7bd580d274044a40abff1ef5;p=thirdparty%2Ffreeradius-server.git

Add more vulnerabilities for OpenSSL
---

diff --git a/src/main/tls.c b/src/main/tls.c
index f5c5ec79452..67982f0515f 100644
--- a/src/main/tls.c
+++ b/src/main/tls.c
@@ -78,6 +78,27 @@ static libssl_defect_t libssl_defects[] =
 		.name		= "Heartbleed",
 		.comment	= "For more information see http://heartbleed.com"
 	}
+	{
+		.low		= 0x01000100f,		/* 1.0.1  */
+		.high		= 0x01000114f,		/* 1.0.1t */
+		.id		= "CVE-2016-6304",
+		.name		= "OCSP status request extension",
+		.comment	= "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+	}
+	{
+		.low		= 0x01000200f,		/* 1.0.2  */
+		.high		= 0x01000108f,		/* 1.0.2h */
+		.id		= "CVE-2016-6304",
+		.name		= "OCSP status request extension",
+		.comment	= "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+	}
+	{
+		.low		= 0x01010100f,		/* 1.1.0  */
+		.high		= 0x01010100f,		/* 1.1.0 */
+		.id		= "CVE-2016-6304",
+		.name		= "OCSP status request extension",
+		.comment	= "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+	}
 };
 #endif /* ENABLE_OPENSSL_VERSION_CHECK */