[Secure-testing-commits] r17168 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Sep 4 20:56:24 UTC 2011
Author: gilbert-guest
Date: 2011-09-04 20:56:23 +0000 (Sun, 04 Sep 2011)
New Revision: 17168
Modified:
data/CVE/list
Log:
tmpfile issue is very low severity, no dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-09-04 18:50:53 UTC (rev 17167)
+++ data/CVE/list 2011-09-04 20:56:23 UTC (rev 17168)
@@ -1,6 +1,10 @@
CVE-2011-XXXX [TMPFILE environment variable exposure]
- debianutils <unfixed> (bug #640389)
+ [squeeze] - debianutils <no-dsa> (very esoteric attack vector)
+ [lenny] - debianutils <no-dsa> (very esoteric attack vector)
- coreutils <unfixed>
+ [squeeze] - coreutils <no-dsa> (very esoteric attack vector)
+ [lenny] - coreutils <no-dsa> (very esoteric attack vector)
CVE-2011-XXXX [unescaped remote shell]
- bcfg2 1.1.2-2 (bug #640028)
NOTE: information as reported by maintainer
More information about the Secure-testing-commits
mailing list