[Secure-testing-commits] r26725 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Apr 28 14:45:36 UTC 2014
Author: carnil
Date: 2014-04-28 14:45:36 +0000 (Mon, 28 Apr 2014)
New Revision: 26725
Modified:
data/CVE/list
Log:
Add fish issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-28 14:31:56 UTC (rev 26724)
+++ data/CVE/list 2014-04-28 14:45:36 UTC (rev 26725)
@@ -145,8 +145,10 @@
RESERVED
CVE-2014-2916
RESERVED
-CVE-2014-2914
+CVE-2014-2914 [remote code execution]
RESERVED
+ - fish <unfixed>
+ NOTE: https://github.com/fish-shell/fish-shell/issues/1438
CVE-2014-2912
RESERVED
CVE-2014-2911
@@ -157,10 +159,14 @@
RESERVED
CVE-2014-2908
RESERVED
-CVE-2014-2906
+CVE-2014-2906 [unsafe temporary file creationg leading to privilege escalation]
RESERVED
-CVE-2014-2905
+ - fish <unfixed>
+ NOTE: https://github.com/fish-shell/fish-shell/issues/1437
+CVE-2014-2905 [permission bypass leading to privilege escalation]
RESERVED
+ - fish <unfixed>
+ NOTE: https://github.com/fish-shell/fish-shell/issues/1436
CVE-2014-2895
RESERVED
CVE-2014-2891
More information about the Secure-testing-commits
mailing list