[Secure-testing-commits] r12280 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Sun Jul 5 19:21:42 UTC 2009


Author: gilbert-guest
Date: 2009-07-05 19:21:41 +0000 (Sun, 05 Jul 2009)
New Revision: 12280

Modified:
   data/CVE/list
Log:
another new minor issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-05 19:16:09 UTC (rev 12279)
+++ data/CVE/list	2009-07-05 19:21:41 UTC (rev 12280)
@@ -1,3 +1,5 @@
+CVE-2009-XXXX [openvpn: possible symlink attack via client-connect script]
+	- openvpn <unfixed> (low; bug #534908)
 CVE-2009-XXXX [xscreensaver: symlink attack enables local information disclosure]
 	- xscreensaver <not-affected> (does not run setuid in debian)
 	NOTE: http://bugs.debian.org/535870




More information about the Secure-testing-commits mailing list