[Secure-testing-commits] r38940 - data/CVE
Mike Gabriel
sunweaver at moszumanska.debian.org
Fri Jan 15 10:12:46 UTC 2016
Author: sunweaver
Date: 2016-01-15 10:12:46 +0000 (Fri, 15 Jan 2016)
New Revision: 38940
Modified:
data/CVE/list
Log:
OpenSSH: Provide some background information on X11 SECURITY extension related to OpenSSH.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-15 10:07:45 UTC (rev 38939)
+++ data/CVE/list 2016-01-15 10:12:46 UTC (rev 38940)
@@ -391,6 +391,7 @@
CVE-2016-XXXX [Eliminate the fallback from untrusted X11-forwarding to trusted forwarding for cases when the X server disables the SECURITY extension]
- openssh 1:7.1p2-1
NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
+ NOTE: Background information on X11 SECURITY extension and SSH: https://thejh.net/written-stuff/openssh-6.8-xsecurity
CVE-2016-XXXX [Fix an out of-bound read access in the packet handling code]
- openssh 1:7.1p2-1
[squeeze] - openssh <not-affected> (Issue introduced in OpenSSH 6.8)
More information about the Secure-testing-commits
mailing list