[Secure-testing-commits] r38367 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Wed Dec 16 21:42:32 UTC 2015
Author: hertzog
Date: 2015-12-16 21:42:32 +0000 (Wed, 16 Dec 2015)
New Revision: 38367
Modified:
data/CVE/list
Log:
Mark CVE-2015-1336 as no-dsa in squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-16 21:16:36 UTC (rev 38366)
+++ data/CVE/list 2015-12-16 21:42:32 UTC (rev 38367)
@@ -22324,6 +22324,7 @@
CVE-2015-1336 [TOCTOU bug when processing catman pages]
RESERVED
- man-db <unfixed>
+ [squeeze] - man-db <no-dsa> (Not exploitable in practice)
NOTE: http://www.halfdog.net/Security/2015/MandbSymlinkLocalRootPrivilegeEscalation/
NOTE: https://bugs.launchpad.net/ubuntu/+source/man-db/+bug/1482786
CVE-2015-1335 (lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local ...)
More information about the Secure-testing-commits
mailing list