[Secure-testing-commits] r27066 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Fri May 30 09:04:31 UTC 2014
Author: fgeek-guest
Date: 2014-05-30 09:04:30 +0000 (Fri, 30 May 2014)
New Revision: 27066
Modified:
data/CVE/list
Log:
CVE-2013-4159, CVE-2013-6433
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-05-30 08:53:18 UTC (rev 27065)
+++ data/CVE/list 2014-05-30 09:04:30 UTC (rev 27066)
@@ -11597,8 +11597,11 @@
RESERVED
CVE-2013-6434 (The remote-viewer in Red Hat Enterprise Virtualization Manager ...)
NOT-FOR-US: RHEV Manager
-CVE-2013-6433
+CVE-2013-6433 [rootwrap sudo config allows potential privilege escalation]
RESERVED
+ - quantum <unfixed>
+ - neutron <unfixed>
+ TODO: check
CVE-2013-6432 (The ping_recvmsg function in net/ipv4/ping.c in the Linux kernel ...)
- linux 3.12.6-1
[wheezy] - linux <not-affected> (Vulnerable code introduced in 3.11)
@@ -17589,8 +17592,9 @@
[wheezy] - lcms2 2.2+git20110628-2.2+deb7u1
NOTE: https://github.com/mm2/Little-CMS/commit/91c2db7f2559be504211b283bc3a2c631d6f06d9
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=826097#c9
-CVE-2013-4159
+CVE-2013-4159 [temporary file vulnerabilities]
RESERVED
+ - ctdb <unfixed> (bug #749840)
CVE-2013-4158
RESERVED
- smokeping <not-affected> (fix for CVE-2012-0790/DSA-2651-1 uses regexp from 2.6.9 upstream release)
More information about the Secure-testing-commits
mailing list