[Secure-testing-commits] r8519 - data/CVE

[nion at alioth.debian.org]

Author: nion
Date: 2008-04-12 17:31:57 +0000 (Sat, 12 Apr 2008)
New Revision: 8519

Modified:
   data/CVE/list
Log:
tss privilege dropping totally broken

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-04-12 16:46:05 UTC (rev 8518)
+++ data/CVE/list	2008-04-12 17:31:57 UTC (rev 8519)
@@ -1,5 +1,6 @@
-CVE-2008-XXXX [buffer overflow in tss before dropping root privileges]
-	- tss <unfixed> (medium; bug #475736)
+CVE-2008-XXXX [tss not properly dropping privileges]
+	- tss <unfixed> (medium; bug #475747; bug #475736)
+	TODO: request CVE ids
 CVE-2008-1720 [rsync xattrs buffer overflow]
 	{DSA-1545-1}
 	- rsync 3.0.2-1