[Secure-testing-commits] r44188 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sat Aug 27 21:10:12 UTC 2016
Author: sectracker
Date: 2016-08-27 21:10:12 +0000 (Sat, 27 Aug 2016)
New Revision: 44188
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-27 20:45:49 UTC (rev 44187)
+++ data/CVE/list 2016-08-27 21:10:12 UTC (rev 44188)
@@ -413,7 +413,7 @@
CVE-2016-6902 [Shell outbreak due to bad syntax parse]
RESERVED
- lshell <unfixed> (bug #834949)
- [wheezy] - lshell <not-affected> (Vulnerable code not present)
+ [wheezy] - lshell <not-affected> (Vulnerable code not present)
NOTE: https://github.com/ghantoos/lshell/issues/147
NOTE: http://www.openwall.com/lists/oss-security/2016/08/22/15
NOTE: As for 2016-08-23 https://github.com/ghantoos/lshell/issues/147#issuecomment-241366750 ist still
@@ -422,7 +422,7 @@
CVE-2016-6903 [Shell outbreak with multiline commands]
RESERVED
- lshell <unfixed> (bug #834946)
- [wheezy] - lshell <not-affected> (Vulnerable code not present)
+ [wheezy] - lshell <not-affected> (Vulnerable code not present)
NOTE: https://github.com/ghantoos/lshell/issues/149
NOTE: http://www.openwall.com/lists/oss-security/2016/08/22/15
CVE-2016-6897
@@ -38004,7 +38004,7 @@
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0c0b0859
NOTE: File to reproduce segfault with ps2pdf: http://bugs.ghostscript.com/attachment.cgi?id=11776
CVE-2015-3227 (The (1) jdom.rb and (2) rexml.rb components in Active Support in Ruby ...)
- {DSA-3464-1}
+ {DSA-3464-1 DLA-603-1}
- rails 2:4.2.4-2 (bug #790487)
[squeeze] - rails <end-of-life> (Unsupported in squeeze-lts)
[wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package)
More information about the Secure-testing-commits
mailing list