[Secure-testing-commits] r36527 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 7 12:23:04 UTC 2015
Author: carnil
Date: 2015-09-07 12:23:04 +0000 (Mon, 07 Sep 2015)
New Revision: 36527
Modified:
data/CVE/list
Log:
util-linux 2.27 now uploaded to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-07 09:10:13 UTC (rev 36526)
+++ data/CVE/list 2015-09-07 12:23:04 UTC (rev 36527)
@@ -3902,7 +3902,7 @@
CVE-2015-5224 [login-utils: file name collision due to incorrect mkstemp use]
RESERVED
[experimental] - util-linux 2.27~rc2-2
- - util-linux <unfixed> (unimportant)
+ - util-linux 2.27-1 (unimportant)
NOTE: chfn/chsh not built in util-linux in Debian (--disable-chfn-chsh)
NOTE: https://github.com/karelzak/util-linux/commit/bde91c85bdc77975155058276f99d2e0f5eab5a9 (v2.27-rc2)
CVE-2015-5223 [Information leak via Swift tempurls]
@@ -6882,7 +6882,7 @@
RESERVED
CVE-2015-XXXX [hwclock(8) SUID privilege escalation]
[experimental] - util-linux 2.27~rc1-1
- - util-linux <unfixed> (unimportant; bug #786804)
+ - util-linux 2.27-1 (unimportant; bug #786804)
NOTE: hwclock is not installed suid in Debian
NOTE: https://github.com/karelzak/util-linux/commit/687cc5d58942b24a9f4013c68876d8cbea907ab1
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/26/10
More information about the Secure-testing-commits
mailing list