Add more vulnerabilities for OpenSSL

diff --git a/src/main/tls.c b/src/main/tls.c
index f5c5ec7..67982f0 100644 (file)
--- a/src/main/tls.c
+++ b/src/main/tls.c
@@ -78,6 +78,27 @@ static libssl_defect_t libssl_defects[] =
                .name           = "Heartbleed",
                .comment        = "For more information see http://heartbleed.com"
        }
+       {
+               .low            = 0x01000100f,          /* 1.0.1  */
+               .high           = 0x01000114f,          /* 1.0.1t */
+               .id             = "CVE-2016-6304",
+               .name           = "OCSP status request extension",
+               .comment        = "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+       }
+       {
+               .low            = 0x01000200f,          /* 1.0.2  */
+               .high           = 0x01000108f,          /* 1.0.2h */
+               .id             = "CVE-2016-6304",
+               .name           = "OCSP status request extension",
+               .comment        = "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+       }
+       {
+               .low            = 0x01010100f,          /* 1.1.0  */
+               .high           = 0x01010100f,          /* 1.1.0 */
+               .id             = "CVE-2016-6304",
+               .name           = "OCSP status request extension",
+               .comment        = "For more information see https://www.openssl.org/news/secadv/20160922.txt"
+       }
 };
 #endif /* ENABLE_OPENSSL_VERSION_CHECK */