[Secure-testing-commits] r12280 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Jul 5 19:21:42 UTC 2009
Author: gilbert-guest
Date: 2009-07-05 19:21:41 +0000 (Sun, 05 Jul 2009)
New Revision: 12280
Modified:
data/CVE/list
Log:
another new minor issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-07-05 19:16:09 UTC (rev 12279)
+++ data/CVE/list 2009-07-05 19:21:41 UTC (rev 12280)
@@ -1,3 +1,5 @@
+CVE-2009-XXXX [openvpn: possible symlink attack via client-connect script]
+ - openvpn <unfixed> (low; bug #534908)
CVE-2009-XXXX [xscreensaver: symlink attack enables local information disclosure]
- xscreensaver <not-affected> (does not run setuid in debian)
NOTE: http://bugs.debian.org/535870
More information about the Secure-testing-commits
mailing list