[Secure-testing-commits] r47496 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 27 15:30:37 UTC 2016
Author: carnil
Date: 2016-12-27 15:30:35 +0000 (Tue, 27 Dec 2016)
New Revision: 47496
Modified:
data/CVE/list
Log:
Update notes for CVE-2016-6252
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-27 15:01:56 UTC (rev 47495)
+++ data/CVE/list 2016-12-27 15:30:35 UTC (rev 47496)
@@ -19944,7 +19944,7 @@
- shadow <unfixed> (bug #832170)
[wheezy] - shadow <not-affected> (Vulnerable code not present)
NOTE: https://github.com/shadow-maint/shadow/issues/27
- NOTE: the change to getulong() is applicable but does not make a difference
+ NOTE: Fixed by: https://github.com/shadow-maint/shadow/commit/1d5a926cc2d6078d23a96222b1ef3e558724dad1 (4.3.1)
CVE-2016-6251 [potentially unsafe use of getlogin]
RESERVED
- shadow <unfixed> (unimportant)
More information about the Secure-testing-commits
mailing list