[Secure-testing-commits] r20211 - data/CVE
Henri Salo
fgeek-guest at alioth.debian.org
Sat Sep 22 08:38:54 UTC 2012
Author: fgeek-guest
Date: 2012-09-22 08:38:54 +0000 (Sat, 22 Sep 2012)
New Revision: 20211
Modified:
data/CVE/list
Log:
CVE-2012-4443 monkey issue got CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-21 21:14:18 UTC (rev 20210)
+++ data/CVE/list 2012-09-22 08:38:54 UTC (rev 20211)
@@ -174,8 +174,6 @@
RESERVED
CVE-2012-4931
RESERVED
-CVE-2012-XXXX [monkey: CGI scripts executed without dropping RUID/RGID root]
- - monkey <unfixed> (bug #688008)
CVE-2012-4930 (The SPDY protocol 3 and earlier, as used in Mozilla Firefox, Google ...)
- iceweasel <not-affected> (Firefox ESV not support SDPY)
TODO: check chromium
@@ -1610,8 +1608,9 @@
RESERVED
CVE-2012-4444
RESERVED
-CVE-2012-4443
+CVE-2012-4443 [monkey: CGI scripts executed without dropping RUID/RGID root]
RESERVED
+ - monkey <unfixed> (bug #688008)
CVE-2012-4442 [monkey: Fails to drop supplemental groups when lowering privileges]
RESERVED
- monkey <unfixed> (bug #688007)
More information about the Secure-testing-commits
mailing list