[Secure-testing-commits] r23729 - in data: . CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Thu Sep 19 06:44:11 UTC 2013


Author: jmm
Date: 2013-09-19 06:44:11 +0000 (Thu, 19 Sep 2013)
New Revision: 23729

Modified:
   data/CVE/list
   data/dsa-needed.txt
Log:
bug filed for polkit, DSA needed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-19 06:16:49 UTC (rev 23728)
+++ data/CVE/list	2013-09-19 06:44:11 UTC (rev 23729)
@@ -3319,7 +3319,7 @@
 	- openjpeg <unfixed> (bug #722540)
 CVE-2013-4288 [unix-process subject for authorization is racy]
 	RESERVED
-	- policykit-1 <unfixed>
+	- policykit-1 <unfixed> (bug #723717)
 CVE-2013-4287 [Algorithmic complexity vulnerability]
 	RESERVED
 	- rubygems <unfixed> (unimportant; bug #722361)

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2013-09-19 06:16:49 UTC (rev 23728)
+++ data/dsa-needed.txt	2013-09-19 06:44:11 UTC (rev 23729)
@@ -75,6 +75,8 @@
 pidgin/oldstable
   The version in squeeze is likely too outdated anyway, so end-of-life might be the better option
 --
+policykit-1
+--
 puppet (geissert)
 --
 pyopenssl (carnil)




More information about the Secure-testing-commits mailing list