[Secure-testing-commits] r23729 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Sep 19 06:44:11 UTC 2013
Author: jmm
Date: 2013-09-19 06:44:11 +0000 (Thu, 19 Sep 2013)
New Revision: 23729
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
bug filed for polkit, DSA needed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-19 06:16:49 UTC (rev 23728)
+++ data/CVE/list 2013-09-19 06:44:11 UTC (rev 23729)
@@ -3319,7 +3319,7 @@
- openjpeg <unfixed> (bug #722540)
CVE-2013-4288 [unix-process subject for authorization is racy]
RESERVED
- - policykit-1 <unfixed>
+ - policykit-1 <unfixed> (bug #723717)
CVE-2013-4287 [Algorithmic complexity vulnerability]
RESERVED
- rubygems <unfixed> (unimportant; bug #722361)
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2013-09-19 06:16:49 UTC (rev 23728)
+++ data/dsa-needed.txt 2013-09-19 06:44:11 UTC (rev 23729)
@@ -75,6 +75,8 @@
pidgin/oldstable
The version in squeeze is likely too outdated anyway, so end-of-life might be the better option
--
+policykit-1
+--
puppet (geissert)
--
pyopenssl (carnil)
More information about the Secure-testing-commits
mailing list