[Secure-testing-commits] r34852 - data/CVE

Alessandro Ghedini ghedo at moszumanska.debian.org
Wed Jun 10 18:54:48 UTC 2015


Author: ghedo
Date: 2015-06-10 18:54:48 +0000 (Wed, 10 Jun 2015)
New Revision: 34852

Modified:
   data/CVE/list
Log:
Add xwayland issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-10 17:41:08 UTC (rev 34851)
+++ data/CVE/list	2015-06-10 18:54:48 UTC (rev 34852)
@@ -2853,8 +2853,16 @@
 	NOTE: Since 9.1.1-2 src:postgresql-9.1 builds only postgresql-plperl-9.1, source-wise fixed
 	- postgresql-8.4 <removed>
 	[wheezy] - postgresql-8.4 <no-dsa> (postgresql-8.4 in wheezy only provides PL/Perl; EOL upstream)
-CVE-2015-3164
+CVE-2015-3164 [Unauthorised local client access in XWayland]
 	RESERVED
+	- xorg-server <unfixed>
+	[wheezy] - xorg-server <not-affected> (XWayland not present)
+	[squeeze] - xorg-server <not-affected> (XWayland not present)
+	NOTE: http://lists.freedesktop.org/archives/wayland-devel/2015-June/022548.html
+	NOTE: Patch 1/3: http://cgit.freedesktop.org/xorg/xserver/commit/?id=c4534a38b68aa07fb82318040dc8154fb48a9588
+	NOTE: Patch 2/3: http://cgit.freedesktop.org/xorg/xserver/commit/?id=4b4b9086d02b80549981d205fb1f495edc373538
+	NOTE: Patch 3/3: http://cgit.freedesktop.org/xorg/xserver/commit/?id=76636ac12f2d1dbdf7be08222f80e7505d53c451
+	TODO: check
 CVE-2015-3163
 	RESERVED
 CVE-2015-3162




More information about the Secure-testing-commits mailing list