1
Candidate: CVE-2016-2217
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2217
5
http://www.openwall.com/lists/oss-security/2016/02/01/4
6
http://www.dest-unreach.org/socat/contrib/socat-secadv7.html
8
The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not
9
use a prime number for the DH, which makes it easier for remote attackers
10
to obtain the shared secret.
13
mdeslaur> only affected 1.7.3.0 and 2.0.0-b8
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813536
21
upstream_socat: released (1.7.3.1-1)
22
precise_socat: ignored (reached end-of-life)
23
precise/esm_socat: DNE (precise was needed)
24
trusty_socat: not-affected (1.7.2.3-1)
25
vivid/stable-phone-overlay_socat: DNE
26
vivid/ubuntu-core_socat: DNE
27
wily_socat: ignored (reached end-of-life)
28
xenial_socat: not-affected (1.7.3.1-1)
29
yakkety_socat: ignored (reached end-of-life)
30
zesty_socat: ignored (reached end-of-life)
31
artful_socat: not-affected (1.7.3.2-1)
32
devel_socat: not-affected (1.7.3.2-2ubuntu2)