[Secure-testing-commits] r21790 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Sun Mar 31 20:09:36 UTC 2013


Author: carnil
Date: 2013-03-31 20:09:36 +0000 (Sun, 31 Mar 2013)
New Revision: 21790

Modified:
   data/CVE/list
Log:
add libuser issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-03-31 20:06:20 UTC (rev 21789)
+++ data/CVE/list	2013-03-31 20:09:36 UTC (rev 21790)
@@ -8617,8 +8617,10 @@
 CVE-2012-5631
 	RESERVED
 	NOT-FOR-US: FreeIPA
-CVE-2012-5630
+CVE-2012-5630 [TOCTOU race conditions by copying and removing directory trees]
 	RESERVED
+	- libuser <unfixed>
+	TODO: check
 CVE-2012-5629 (The default configuration of the (1) LdapLoginModule and (2) ...)
 	- jbossas4 <not-affected> (Only builds a few libraries, not the full application server, #581226)
 CVE-2012-5628




More information about the Secure-testing-commits mailing list