[Secure-testing-commits] r37228 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 22 05:00:33 UTC 2015
Author: carnil
Date: 2015-10-22 05:00:33 +0000 (Thu, 22 Oct 2015)
New Revision: 37228
Modified:
data/CVE/list
Log:
Add CVE-2011-5325/busybox
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-22 04:57:50 UTC (rev 37227)
+++ data/CVE/list 2015-10-22 05:00:33 UTC (rev 37228)
@@ -6134,6 +6134,9 @@
NOT-FOR-US: GE Healthcare Centricity PACS Workstation
CVE-2012-6693 (GE Healthcare Centricity PACS 4.0 Server has a default password of (1) ...)
NOT-FOR-US: GE Healthcare Centricity PACS
+CVE-2011-5325 [Directory traversal via crafted tar file which contains a symlink pointing outside of the current directory]
+ - busybox <unfixed>
+ NOTE: https://bugs.busybox.net/8411
CVE-2011-5324 (The TeraRecon server, as used in GE Healthcare Centricity PACS-IW ...)
NOT-FOR-US: GE Healthcare Centricity PACS-IW
CVE-2011-5323 (GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other ...)
More information about the Secure-testing-commits
mailing list