[Secure-testing-commits] r35265 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jul 1 18:05:52 UTC 2015
Author: carnil
Date: 2015-07-01 18:05:52 +0000 (Wed, 01 Jul 2015)
New Revision: 35265
Modified:
data/CVE/list
Log:
Add CVE-2015-5352/openssh
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-01 17:07:30 UTC (rev 35264)
+++ data/CVE/list 2015-07-01 18:05:52 UTC (rev 35265)
@@ -4,6 +4,10 @@
[wheezy] - ntp <no-dsa> (Minor issue)
[squeeze] - ntp <no-dsa> (Minor issue)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#June_2015_NTP_Security_Vulnerabi
+CVE-2015-5352 [refusal deadline is not checked within the x11_open_helper function]
+ - openssh <unfixed>
+ NOTE: http://www.openwall.com/lists/oss-security/2015/07/01/7
+ NOTE: https://anongit.mindrot.org/openssh.git/commit/?h=V_6_9&id=1bf477d3cdf1a864646d59820878783d42357a1d
CVE-2015-5147 [Stack overflow in redcarpet's header_anchor]
- ruby-redcarpet <unfixed>
[wheezy] - ruby-redcarpet <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list