[Secure-testing-commits] r2704 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Wed Nov 9 22:26:38 UTC 2005


Author: jmm-guest
Date: 2005-11-09 22:26:34 +0000 (Wed, 09 Nov 2005)
New Revision: 2704

Modified:
   data/CVE/list
Log:
new osh issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-11-09 21:14:17 UTC (rev 2703)
+++ data/CVE/list	2005-11-09 22:26:34 UTC (rev 2704)
@@ -1,3 +1,5 @@
+CVE-2005-XXXX [osh: Local root exploit due to incorrect env var handling]
+	- osh <unfixed> (bug #338312; medium)
 CVE-2005-XXXX [Information disclosure in Asterisk's voice mail system]
 	- asterisk <unfixed> (bug filed; medium)
 CVE-2005-XXXX [webcalendar's password visible to local users through debconf]




More information about the Secure-testing-commits mailing list