[Secure-testing-commits] r30924 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Mon Dec 22 17:30:37 UTC 2014
Author: hertzog
Date: 2014-12-22 17:30:36 +0000 (Mon, 22 Dec 2014)
New Revision: 30924
Modified:
data/CVE/list
Log:
Mark CVE-2014-9324/otrs2 as not-affected on wheezy/squeeze
The problematic module got introduced in 3.2.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-22 17:26:04 UTC (rev 30923)
+++ data/CVE/list 2014-12-22 17:30:36 UTC (rev 30924)
@@ -167,6 +167,8 @@
CVE-2014-9324
RESERVED
- otrs2 3.3.9-3
+ [wheezy] - otrs2 <not-affected> (Problematic module got introduced in version 3.2)
+ [squeeze] - otrs2 <not-affected> (Problematic module got introduced in version 3.2)
NOTE: https://www.otrs.com/security-advisory-2014-06-incomplete-access-control/
CVE-2014-9322 [x86: local privesc due to bad_iret and paranoid entry incompatibility]
RESERVED
More information about the Secure-testing-commits
mailing list