[Secure-testing-commits] r42884 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 29 15:28:10 UTC 2016
Author: carnil
Date: 2016-06-29 15:28:10 +0000 (Wed, 29 Jun 2016)
New Revision: 42884
Modified:
data/CVE/list
Log:
Update information for CVE-2014-4039/ppc64-diag
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-29 15:25:19 UTC (rev 42883)
+++ data/CVE/list 2016-06-29 15:28:10 UTC (rev 42884)
@@ -57990,10 +57990,11 @@
- ppc64-diag <unfixed>
CVE-2014-4039 (ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does ...)
- ppc64-diag <unfixed>
+ NOTE: SuSE Patch: https://bugzilla.novell.com/attachment.cgi?id=599147
CVE-2014-4038 (ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a ...)
- ppc64-diag <unfixed>
NOTE: Issue partially fixed in 2.7.1-1, but not all parts fixed
- NOTE: SuSE Patch covering all three items: https://bugzilla.novell.com/attachment.cgi?id=599147
+ NOTE: SuSE Patch: https://bugzilla.novell.com/attachment.cgi?id=599147
CVE-2014-4037 (Cross-site scripting (XSS) vulnerability in ...)
- fckeditor <removed> (low; bug #752873)
[wheezy] - fckeditor <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list