[Secure-testing-commits] r42544 - data/CVE
Petter Reinholdtsen
pere at moszumanska.debian.org
Wed Jun 15 07:06:03 UTC 2016
Author: pere
Date: 2016-06-15 07:06:03 +0000 (Wed, 15 Jun 2016)
New Revision: 42544
Modified:
data/CVE/list
Log:
Attribute bug #760455 to automake-1.15, not automake-1.14, and note the issue also affect automake1.11.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-15 06:55:39 UTC (rev 42543)
+++ data/CVE/list 2016-06-15 07:06:03 UTC (rev 42544)
@@ -51208,10 +51208,12 @@
NOTE: http://github.com/mantisbt/mantisbt/commit/215968fa8 (1.2.x branch)
NOTE: http://github.com/mantisbt/mantisbt/commit/fc02c46ee (master branch)
CVE-2014-XXXX [install-sh: insecure use of /tmp]
- - automake-1.15 1:1.15-3
- - automake-1.14 <unfixed> (low; bug #760455)
+ - automake1.11 <unfixed> (low)
+ - automake-1.14 <unfixed> (low)
+ - automake-1.15 1:1.15-3 (low; bug #760455)
[jessie] - automake-1.14 <no-dsa> (Minor issue)
TODO: check other automake versions
+ NOTE: http://seclists.org/oss-sec/2014/q3/588
CVE-2014-6252 (Buffer overflow in disp+work.exe 7000.52.12.34966 and ...)
NOT-FOR-US: SAP NetWeaver
CVE-2014-6311 [/tmp file vulnerability in generate_doxygen.pl]
More information about the Secure-testing-commits
mailing list