[Secure-testing-commits] r41325 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-05-01 05:44:04 +0000 (Sun, 01 May 2016)
New Revision: 41325

Modified:
   data/CVE/list
Log:
Update information for libpam-sshauth

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-01 05:30:22 UTC (rev 41324)
+++ data/CVE/list	2016-05-01 05:44:04 UTC (rev 41325)
@@ -1,5 +1,8 @@
 CVE-2016-XXXX [local root privilege escalation]
 	- libpam-sshauth 0.4.1-2
+	NOTE: Introduced in: https://bazaar.launchpad.net/~ltsp-upstream/ltsp/libpam-sshauth/revision/93/src/pam_sshauth.c
+	NOTE: Fixed in: https://bazaar.launchpad.net/~ltsp-upstream/ltsp/libpam-sshauth/revision/114
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/05/01/2
 CVE-2016-XXXX [denial of service]
 	- quassel 1:0.12.4-2
 	NOTE: https://github.com/quassel/quassel/blob/f64ac93/src/core/coreauthhandler.cpp#L100