[Secure-testing-commits] r40070 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Feb 29 20:01:55 UTC 2016
Author: carnil
Date: 2016-02-29 20:01:55 +0000 (Mon, 29 Feb 2016)
New Revision: 40070
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2016-2781/coreutils, #816320
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-29 20:01:46 UTC (rev 40069)
+++ data/CVE/list 2016-02-29 20:01:55 UTC (rev 40070)
@@ -25,7 +25,7 @@
- linux-2.6 <removed>
NOTE: Upstream commit: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cac9b50b0d75a1d50d6c056ff65c005f3224c8e0 (v4.5-rc2)
CVE-2016-2781 [nonpriv session can escape to the parent session by using the TIOCSTI ioctl]
- - coreutils <unfixed>
+ - coreutils <unfixed> (bug #816320)
CVE-2016-2779 [runuser tty hijacking via TIOCSTI ioctl]
- util-linux <unfixed> (bug #815922)
[wheezy] - util-linux <not-affected> (runuser[.c] not yet present)
More information about the Secure-testing-commits
mailing list