[Secure-testing-commits] r44163 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-08-26 19:58:16 +0000 (Fri, 26 Aug 2016)
New Revision: 44163

Modified:
   data/CVE/list
Log:
Add CVE-2016-7097/linux

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-26 19:45:28 UTC (rev 44162)
+++ data/CVE/list	2016-08-26 19:58:16 UTC (rev 44163)
@@ -1,3 +1,8 @@
+CVE-2016-7097 [Setting a POSIX ACL via setxattr doesn't clear the setgid bit]
+	- linux <unfixed>
+	NOTE: http://www.spinics.net/lists/linux-fsdevel/msg98328.html
+	NOTE: http://marc.info/?l=linux-fsdevel&m=147162313630259&w=2
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1368938
 CVE-2016-7091
 	- sudo <not-affected> (Debian not including INPUTRC in /etc/sudoers)
 	NOTE: Cf. https://bugzilla.redhat.com/show_bug.cgi?id=1339935