[Secure-testing-commits] r44104 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 23 04:26:52 UTC 2016
Author: carnil
Date: 2016-08-23 04:26:51 +0000 (Tue, 23 Aug 2016)
New Revision: 44104
Modified:
data/CVE/list
Log:
CVEs assigned for lshell
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-22 21:10:11 UTC (rev 44103)
+++ data/CVE/list 2016-08-23 04:26:51 UTC (rev 44104)
@@ -20,14 +20,17 @@
RESERVED
CVE-2016-6881
RESERVED
-CVE-2016-XXXX [Shell outbreak due to bad syntax parse]
+CVE-2016-6902 [Shell outbreak due to bad syntax parse]
- lshell <unfixed> (bug #834949)
NOTE: https://github.com/ghantoos/lshell/issues/147
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/08/22/15
-CVE-2016-XXXX [Shell outbreak with multiline commands]
+ NOTE: http://www.openwall.com/lists/oss-security/2016/08/22/15
+ NOTE: As for 2016-08-23 https://github.com/ghantoos/lshell/issues/147#issuecomment-241366750 ist still
+ NOTE: as well under the scope of CVE-2016-6902, until "there is further vendor followup
+ NOTE: about issues/147" and possibly a new/additional CVE assignment.
+CVE-2016-6903 [Shell outbreak with multiline commands]
- lshell <unfixed> (bug #834946)
NOTE: https://github.com/ghantoos/lshell/issues/149
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/08/22/15
+ NOTE: http://www.openwall.com/lists/oss-security/2016/08/22/15
CVE-2016-6897
RESERVED
- wordpress <unfixed>
More information about the Secure-testing-commits
mailing list