[Secure-testing-commits] r11833 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Thu May 7 19:25:00 UTC 2009
Author: gilbert-guest
Date: 2009-05-07 19:25:00 +0000 (Thu, 07 May 2009)
New Revision: 11833
Modified:
data/CVE/list
Log:
need to check whether screen issues affect zsh
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-07 15:06:47 UTC (rev 11832)
+++ data/CVE/list 2009-05-07 19:25:00 UTC (rev 11833)
@@ -1287,9 +1287,11 @@
[etch] - screen <not-affected> (etch version predates #433338)
[lenny] - screen <no-dsa> (Minor issue)
TODO: add after r2 4.0.3-11+lenny1
+ NOTE: check zsh (updated by mandriva http://lwn.net/Articles/332352)
CVE-2009-1214 (GNU screen 4.0.3 creates the /tmp/screen-exchange temporary file with ...)
- screen 4.0.3-13 (unimportant; bug #521123)
NOTE: documented behaviour "or the public accessible screen-exchange", see man screen
+ NOTE: check zsh (updated by mandriva http://lwn.net/Articles/332352)
CVE-2009-1213 (Cross-site request forgery (CSRF) vulnerability in attachment.cgi in ...)
- bugzilla <unfixed> (low)
[etch] - bugzilla <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list