[Secure-testing-commits] r31657 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jan 25 07:08:09 UTC 2015


Author: carnil
Date: 2015-01-25 07:08:09 +0000 (Sun, 25 Jan 2015)
New Revision: 31657

Modified:
   data/CVE/list
Log:
Update entry for CVE-2014-9645/busybox, #776186

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-25 06:56:09 UTC (rev 31656)
+++ data/CVE/list	2015-01-25 07:08:09 UTC (rev 31657)
@@ -24,10 +24,11 @@
 	[squeeze] - linux-2.6 <not-affected> (Introduced in v2.6.38-rc1)
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4943ba16bbc2 (v3.19-rc1)
 CVE-2014-9645 [modprobe wrongly accepts paths as module names]
-	- busybox <unfixed>
+	- busybox <unfixed> (bug #776186)
+	[wheezy] - busybox <no-dsa> (Minor issue)
+	[squeeze] - busybox <no-dsa> (Minor issue)
 	NOTE: https://bugs.busybox.net/show_bug.cgi?id=7652
 	NOTE: http://git.busybox.net/busybox/commit/?id=4e314faa0aecb66717418e9a47a4451aec59262b
-	TODO: check, also affects kmod?
 CVE-2008-XXXX [Segfault from bad backreference]
 	- perl 5.20.0-1 (bug #776046)
 	[wheezy] - perl <no-dsa> (Minor issue)




More information about the Secure-testing-commits mailing list