[Secure-testing-commits] r26491 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 9 21:26:22 UTC 2014
Author: carnil
Date: 2014-04-09 21:26:22 +0000 (Wed, 09 Apr 2014)
New Revision: 26491
Modified:
data/CVE/list
Log:
Add temporary item for cifs-utils, still with TODO, please double check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-09 21:14:10 UTC (rev 26490)
+++ data/CVE/list 2014-04-09 21:26:22 UTC (rev 26491)
@@ -1,3 +1,9 @@
+CVE-2014-XXXX [cifs-utils: pam module pam_cifscreds stack overflow]
+ - cifs-utils <unfixed>
+ [squeeze] - cifs-utils <not-affected> (Vulnerable code not present)
+ [wheezy] - cifs-utils <not-affected> (pam_cifscreds introduced in 6.3)
+ NOTE: cifscreds PAM module seems not build in unstable
+ TODO: double check
CVE-2014-2746
TODO: check
CVE-2014-2745
More information about the Secure-testing-commits
mailing list