[Secure-testing-commits] r42777 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jun 25 05:14:40 UTC 2016
Author: carnil
Date: 2016-06-25 05:14:40 +0000 (Sat, 25 Jun 2016)
New Revision: 42777
Modified:
data/CVE/list
Log:
Add CVE-2016-1237
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-24 21:10:13 UTC (rev 42776)
+++ data/CVE/list 2016-06-25 05:14:40 UTC (rev 42777)
@@ -14383,8 +14383,13 @@
RESERVED
CVE-2016-1238
RESERVED
-CVE-2016-1237
+CVE-2016-1237 [nfsd: any user can set a file's ACL over NFS and grant access to it]
RESERVED
+ - linux <unfixed>
+ [wheezy] - linux <not-affected> (Vulnerable code introduced later)
+ NOTE: Introduced by: https://git.kernel.org/linus/4ac7249ea5a0ceef9f8269f63f33cc873c3fac61 (v3.14-rc1)
+ NOTE: Prerequisite: https://git.kernel.org/linus/485e71e8fb6356c08c7fc6bcce4bf02c9a9a663f
+ NOTE: Fixed by: https://git.kernel.org/linus/999653786df6954a31044528ac3f7a5dadca08f4
CVE-2016-1236 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...)
{DSA-3572-1 DLA-462-1}
- websvn <removed>
More information about the Secure-testing-commits
mailing list