[Secure-testing-commits] r20802 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Jan 3 23:04:46 UTC 2013
Author: carnil
Date: 2013-01-03 23:04:46 +0000 (Thu, 03 Jan 2013)
New Revision: 20802
Modified:
data/CVE/list
Log:
add CVE for rpm
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-03 21:14:24 UTC (rev 20801)
+++ data/CVE/list 2013-01-03 23:04:46 UTC (rev 20802)
@@ -2231,8 +2231,12 @@
RESERVED
CVE-2012-6089
RESERVED
-CVE-2012-6088
+CVE-2012-6088 [Signature checking function returned success on (possibly malicious) rpm packages]
RESERVED
+ - rpm <unfixed>
+ [squeeze] - rpm <not-affected>
+ NOTE: According to the information only rpm >= 4.10.0 affected
+ TODO: check
CVE-2012-6087 [moodle insecure curl usage]
RESERVED
- moodle <unfixed>
More information about the Secure-testing-commits
mailing list