[Secure-testing-commits] r40308 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Mar 10 21:12:00 UTC 2016
Author: carnil
Date: 2016-03-10 21:12:00 +0000 (Thu, 10 Mar 2016)
New Revision: 40308
Modified:
data/CVE/list
Log:
Add CVE-2016-3116/dropbear
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-10 21:10:29 UTC (rev 40307)
+++ data/CVE/list 2016-03-10 21:12:00 UTC (rev 40308)
@@ -1,3 +1,7 @@
+CVE-2016-3116 [Validate X11 forwarding input]
+ - dropbear <unfixed>
+ NOTE: https://matt.ucc.asn.au/dropbear/CHANGES
+ NOTE: Fixed in 2016.72 upstream
CVE-2016-3115 [xauth command injection]
- openssh 1:7.2p2-1
NOTE: http://www.openssh.com/txt/x11fwd.adv
More information about the Secure-testing-commits
mailing list