[Secure-testing-commits] r43374 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jul 22 17:09:00 UTC 2016
Author: carnil
Date: 2016-07-22 17:09:00 +0000 (Fri, 22 Jul 2016)
New Revision: 43374
Modified:
data/CVE/list
Log:
Add note for CVE-2016-6210/openssh
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-22 16:44:52 UTC (rev 43373)
+++ data/CVE/list 2016-07-22 17:09:00 UTC (rev 43374)
@@ -392,6 +392,8 @@
NOTE: http://seclists.org/fulldisclosure/2016/Jul/51
NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=9286875a73b2de7736b5e50692739d314cd8d9dc
NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=283b97ff33ea2c641161950849931bd578de6946
+ NOTE: Suggested to cherry-pick as well: https://anongit.mindrot.org/openssh.git/commit/?id=dbf788b4d9d9490a5fff08a7b09888272bb10fcc
+ NOTE: otherwise the mitigiation isn't very effective for systems with a locked root account.
CVE-2016-6208
RESERVED
CVE-2016-6207
More information about the Secure-testing-commits
mailing list