[Secure-testing-commits] r36487 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Sep 5 03:35:04 UTC 2015


Author: carnil
Date: 2015-09-05 03:35:04 +0000 (Sat, 05 Sep 2015)
New Revision: 36487

Modified:
   data/CVE/list
Log:
Remove glusterfs entry

There will be no CVE ID assignment unless more information showing it is
a vulnerability are added to discussion.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-04 21:02:11 UTC (rev 36486)
+++ data/CVE/list	2015-09-05 03:35:04 UTC (rev 36487)
@@ -1243,11 +1243,6 @@
 	RESERVED
 CVE-2014-9743 (Cross-site scripting (XSS) vulnerability in the httpd_HtmlError ...)
 	TODO: check
-CVE-2015-XXXX [fuse check return value of setuid]
-	- glusterfs 3.7.4-1 (unimportant; bug #796023)
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/18/6
-	NOTE: http://review.gluster.org/#/c/10780/
-	NOTE: https://github.com/gluster/glusterfs/commit/b5ceb1a9de9af563b0f91e2a3138fa5a95cad9f6
 CVE-2015-6526 (The perf_callchain_user_64 function in arch/powerpc/perf/callchain.c ...)
 	- linux 4.1.3-1
 	[wheezy] - linux <not-affected> (No ppc64 yet)




More information about the Secure-testing-commits mailing list