[Secure-testing-commits] r36009 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 12 12:37:16 UTC 2015
Author: carnil
Date: 2015-08-12 12:37:16 +0000 (Wed, 12 Aug 2015)
New Revision: 36009
Modified:
data/CVE/list
Log:
Add a third issue in openssh with requested CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-12 12:35:37 UTC (rev 36008)
+++ data/CVE/list 2015-08-12 12:37:16 UTC (rev 36009)
@@ -1,3 +1,8 @@
+CVE-2015-XXXX [Incorrectly set TTYs to be world-writable]
+ - openssh <unfixed>
+ NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=6f941396b6835ad18018845f515b0c4fe20be21a
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/12/1
+ TODO: check
CVE-2015-XXXX [Privilege separation weakness related to PAM support]
- openssh <unfixed>
NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=d4697fe9a28dab7255c60433e4dd23cf7fce8a8b
More information about the Secure-testing-commits
mailing list