[Secure-testing-commits] r34137 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri May 8 17:37:28 UTC 2015
Author: carnil
Date: 2015-05-08 17:37:28 +0000 (Fri, 08 May 2015)
New Revision: 34137
Modified:
data/CVE/list
Log:
Update entry for sosreport, #769521
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-08 17:06:18 UTC (rev 34136)
+++ data/CVE/list 2015-05-08 17:37:28 UTC (rev 34137)
@@ -1158,10 +1158,11 @@
RESERVED
CVE-2015-3172
RESERVED
-CVE-2015-3171
+CVE-2015-3171 [archives are created with read permissions for everyone]
RESERVED
- - sosreport <unfixed>
- TODO: check
+ - sosreport 3.2-2 (bug #769521)
+ NOTE: https://github.com/sosreport/sos/commit/d7759d3ddae5fe99a340c88a1d370d65cfa73fd6
+ NOTE: https://github.com/sosreport/sos/issues/425
CVE-2015-3170
RESERVED
NOT-FOR-US: Red Hat specific issue with selinux-policy rpm package
@@ -12786,9 +12787,6 @@
NOTE: Affected upstream versions >= 1.2.13, <= 1.2.17
NOTE: https://github.com/mantisbt/mantisbt/commit/49c3d089
NOTE: http://www.mantisbt.org/bugs/view.php?id=17870
-CVE-2014-XXXX [archives are created with read permissions for everyone]
- - sosreport 3.2-2 (bug #769521)
- NOTE: https://github.com/sosreport/sos/issues/425
CVE-2014-8884 (Stack-based buffer overflow in the ...)
{DSA-3093-1 DLA-118-1}
- linux 3.16.7-ckt2-1
More information about the Secure-testing-commits
mailing list