[Secure-testing-commits] r17515 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Fri Oct 28 17:33:24 UTC 2011
Author: gilbert-guest
Date: 2011-10-28 17:33:24 +0000 (Fri, 28 Oct 2011)
New Revision: 17515
Modified:
data/CVE/list
Log:
xorg issue info
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-10-28 16:41:12 UTC (rev 17514)
+++ data/CVE/list 2011-10-28 17:33:24 UTC (rev 17515)
@@ -383,6 +383,8 @@
[squeeze] - xorg-server <no-dsa> (Minor issue, will be fixed in a point update)
[lenny] - xorg-server <no-dsa> (Minor issue)
NOTE: http://cgit.freedesktop.org/xorg/xserver/commit/?id=b67581cf825940fdf52bf2e0af4330e695d724a4
+ NOTE: this has a poc now: http://vladz.devzero.fr/Xorg-CVE-2011-4029.txt
+ TODO: max impact is info disclosure, which tends to be treated w low urgency, but this allows reading of any file, e.g. /etc/shadow, so should urgency be higher?
CVE-2011-4028
RESERVED
- xorg-server 2:1.11.1.901-2 (low)
More information about the Secure-testing-commits
mailing list