[Secure-testing-commits] r38149 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 7 19:43:33 UTC 2015
Author: carnil
Date: 2015-12-07 19:43:32 +0000 (Mon, 07 Dec 2015)
New Revision: 38149
Modified:
data/CVE/list
Log:
Add unsafe use of /tmp for git-repair, #807341
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-07 16:04:41 UTC (rev 38148)
+++ data/CVE/list 2015-12-07 19:43:32 UTC (rev 38149)
@@ -1,3 +1,5 @@
+CVE-2015-XXXX [uses non-random tempdir /tmp/tmprepo.0/.git/]
+ - git-repair <unfixed> (bug #807341)
CVE-2015-XXXX [Data disclosure in atom feed]
- redmine <unfixed>
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
More information about the Secure-testing-commits
mailing list