[Secure-testing-commits] r40817 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 8 11:25:55 UTC 2016
Author: carnil
Date: 2016-04-08 11:25:55 +0000 (Fri, 08 Apr 2016)
New Revision: 40817
Modified:
data/CVE/list
Log:
Add temporary entry for systemd issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-08 09:10:12 UTC (rev 40816)
+++ data/CVE/list 2016-04-08 11:25:55 UTC (rev 40817)
@@ -1,3 +1,12 @@
+CVE-2016-XXXX [systemd / journald created world readable journal files]
+ - systemd 229-1
+ [jessie] - systemd <not-affected> (Vulnerable code not present)
+ [wheezy] - systemd <not-affected> (Vulnerable code not present)
+ NOTE: Introduced by: https://github.com/systemd/systemd/commit/a606871da508995f5ede113a8fc6538afd98966c (v213)
+ NOTE: Fixed by (for volatile journals): https://github.com/systemd/systemd/commit/176f2acf8dee45fee832fd2ab07243f63783a238 (v214)
+ NOTE: Fixed by (for current persistent journal): https://github.com/systemd/systemd/commit/afae249efa4774c6676738ac5de6aeb4daf4889f (v229)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=972612
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/08/14
CVE-2016-7921
REJECTED
CVE-2016-3977 [gif2rgb: heap buffer overflow]
More information about the Secure-testing-commits
mailing list