[Secure-testing-commits] r37333 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 25 19:23:36 UTC 2015
Author: carnil
Date: 2015-10-25 19:23:36 +0000 (Sun, 25 Oct 2015)
New Revision: 37333
Modified:
data/CVE/list
Log:
Correct todo for CVE-2013-6890
NOTE: Updated prematurely the entry with the xscreensaver update
unintentionally. The entry needs a recheck now that denyhosts is again
in unstable. Cf. as well #802917 which needs a comment from the security
team.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-25 19:18:36 UTC (rev 37332)
+++ data/CVE/list 2015-10-25 19:23:36 UTC (rev 37333)
@@ -48890,8 +48890,8 @@
NOTE: https://www.cups.org/str.php?L4319
CVE-2013-6890 (denyhosts 2.6 uses an incorrect regular expression when analyzing ...)
{DSA-2826-1}
- - denyhosts <unfixed>
- NOTE: Originally fixed as well in 2.6-10.1 but was reintroduced in unstable
+ - denyhosts 2.6-10.1
+ TODO: Check. Originally fixed in 2.6-10.1 but denyhosts introduced in unstable possibly without fix
CVE-2013-6889 (GNU Rush 1.7 does not properly drop privileges, which allows local ...)
- rush 1.7+dfsg-4 (bug #733505)
[wheezy] - rush 1.7+dfsg-1+deb7u1
More information about the Secure-testing-commits
mailing list