[Secure-testing-commits] r26247 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 26 06:15:04 UTC 2014
Author: carnil
Date: 2014-03-26 06:15:04 +0000 (Wed, 26 Mar 2014)
New Revision: 26247
Modified:
data/CVE/list
Log:
Add comment for CVE-2014-2532/openssh
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-26 06:13:22 UTC (rev 26246)
+++ data/CVE/list 2014-03-26 06:15:04 UTC (rev 26247)
@@ -311,6 +311,7 @@
[squeeze] - xen <not-affected> (Only exploitable with Linux >= 3.12)
CVE-2014-2532 (sshd in OpenSSH before 6.6 does not properly support wildcards on ...)
- openssh <unfixed>
+ NOTE: Default sshd_config in Debian has AcceptEnv LANG LC_*
NOTE: http://marc.info/?l=openbsd-security-announce&m=139492048027313&w=2
CVE-2014-2581 [credentials cache leak]
RESERVED
More information about the Secure-testing-commits
mailing list