[Secure-testing-commits] r18326 - data/CVE

[Arne Wichmann]

Author: aw-guest
Date: 2012-01-28 21:26:34 +0000 (Sat, 28 Jan 2012)
New Revision: 18326

Modified:
   data/CVE/list
Log:
CVE-2005-4890 - sudo seems quite vulnerable to me


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-01-28 10:17:34 UTC (rev 18325)
+++ data/CVE/list	2012-01-28 21:26:34 UTC (rev 18326)
@@ -10381,8 +10381,7 @@
 	[squeeze] - shadow <no-dsa> (Minor issue)
 	[lenny] - shadow <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=173008
-	- sudo <undetermined>
-	NOTE: ubuntu indicates sudo may also be affected, but that code is completely different, so that seems unlikely
+	- sudo <unfixed> (low; bug #657784)
 CVE-2011-2331 (Integer overflow in img.exe in HP Intelligent Management Center (IMC) ...)
 	NOT-FOR-US: HP Intelligent Management Center (IMC)
 CVE-2011-2330 (Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, ...)