[Secure-testing-commits] r35303 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jul 3 17:13:56 UTC 2015


Author: carnil
Date: 2015-07-03 17:13:56 +0000 (Fri, 03 Jul 2015)
New Revision: 35303

Modified:
   data/CVE/list
Log:
Update information for policykit-1 issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-07-03 15:28:37 UTC (rev 35302)
+++ data/CVE/list	2015-07-03 17:13:56 UTC (rev 35303)
@@ -2518,6 +2518,7 @@
 	NOTE: Vulnerable function introduced in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=66450a21f99636af4fafac2afd33f1a40631bc3a (v3.10-rc1)
 CVE-2015-4625 [cookie generator can wrap and two identical cookies could exist; DoS]
 	RESERVED
+	[experimental] - policykit-1 0.113-1
 	- policykit-1 <unfixed> (low)
 	[jessie] - policykit-1 <no-dsa> (Minor issue)
 	[wheezy] - policykit-1 <no-dsa> (Minor issue)
@@ -5183,8 +5184,14 @@
 	RESERVED
 CVE-2015-3256
 	RESERVED
+	[experimental] - policykit-1 0.113-1
+	- policykit-1 <unfixed>
+	TODO: check information
 CVE-2015-3255
 	RESERVED
+	[experimental] - policykit-1 0.113-1
+	- policykit-1 <unfixed>
+	TODO: check information
 CVE-2015-3254
 	RESERVED
 CVE-2015-3253
@@ -5322,6 +5329,7 @@
 	NOTE: 2014.2 versions through 2014.2.3 and version 2015.1.0
 CVE-2015-3218 [crash authentication_agent_new with invalid object path in RegisterAuthenticationAgent]
 	RESERVED
+	[experimental] - policykit-1 0.113-1
 	- policykit-1 <unfixed> (bug #787932)
 	[jessie] - policykit-1 <no-dsa> (Minor issue)
 	[wheezy] - policykit-1 <no-dsa> (Minor issue)




More information about the Secure-testing-commits mailing list