[Secure-testing-commits] r47304 - data/CVE
Ola Lundqvist
opal at moszumanska.debian.org
Wed Dec 21 21:47:34 UTC 2016
Author: opal
Date: 2016-12-21 21:47:34 +0000 (Wed, 21 Dec 2016)
New Revision: 47304
Modified:
data/CVE/list
Log:
No dsa for openssh. Same as triaged for jessie.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-21 21:43:53 UTC (rev 47303)
+++ data/CVE/list 2016-12-21 21:47:34 UTC (rev 47304)
@@ -477,6 +477,7 @@
RESERVED
- openssh <unfixed> (low; bug #848717)
[jessie] - openssh <no-dsa> (Minor issue)
+ [wheezy] - openssh <no-dsa> (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.165&r2=1.166
NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.h.diff?r1=1.19&r2=1.20
@@ -485,6 +486,7 @@
RESERVED
- openssh <unfixed> (low; bug #848716)
[jessie] - openssh <no-dsa> (Minor issue)
+ [wheezy] - openssh <no-dsa> (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/authfile.c.diff?r1=1.121&r2=1.122
CVE-2016-10010 [sshd(8): When privilege separation is disabled, forwarded Unix-domain sockets would be created by sshd(8) with the privileges of 'root']
@@ -497,6 +499,7 @@
RESERVED
- openssh <unfixed> (low; bug #848714)
[jessie] - openssh <no-dsa> (Minor issue)
+ [wheezy] - openssh <no-dsa> (Minor issue)
NOTE: Fixed in upstream 7.4: https://www.openssh.com/txt/release-7.4
NOTE: http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/ssh-agent.c.diff?r1=1.214&r2=1.215
CVE-2016-9998 (SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability ...)
More information about the Secure-testing-commits
mailing list