[Secure-testing-commits] r42484 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jun 12 14:47:55 UTC 2016
Author: carnil
Date: 2016-06-12 14:47:55 +0000 (Sun, 12 Jun 2016)
New Revision: 42484
Modified:
data/CVE/list
Log:
mark salt as no-dsa for CVE-2016-3176
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-12 14:47:47 UTC (rev 42483)
+++ data/CVE/list 2016-06-12 14:47:55 UTC (rev 42484)
@@ -6210,6 +6210,9 @@
CVE-2016-3176 [insecure configuration of PAM external authentication service]
RESERVED
- salt 2015.8.8+ds-1 (bug #819184)
+ [jessie] - salt <no-dsa> (Minor issue; external_auth not by default usable)
+ NOTE: external_auth seems not usable by default under Jessie due to the
+ NOTE: permissions on /var/run/salt/master.
NOTE: https://docs.saltstack.com/en/latest/topics/releases/2015.8.8.html
NOTE: https://docs.saltstack.com/en/latest/topics/releases/2015.5.10.html
NOTE: https://github.com/saltstack/salt/pull/31826/commits/d73f70ebb289142e4f692359fe741a54f5d2ad65
More information about the Secure-testing-commits
mailing list