[Secure-testing-commits] r41769 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon May 16 13:01:27 UTC 2016
Author: carnil
Date: 2016-05-16 13:01:27 +0000 (Mon, 16 May 2016)
New Revision: 41769
Modified:
data/CVE/list
Log:
Mark CVE-205-8842 as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-16 12:03:04 UTC (rev 41768)
+++ data/CVE/list 2016-05-16 13:01:27 UTC (rev 41769)
@@ -2293,6 +2293,7 @@
NOTE: Fixed by (for volatile journals): https://github.com/systemd/systemd/commit/176f2acf8dee45fee832fd2ab07243f63783a238 (v214)
CVE-2015-8842 (tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions ...)
- systemd 229-1
+ [jessie] - systemd <no-dsa> (Minor issue, persistent journal not enabled by default, README.Debian documents Debian way under Jessie)
[wheezy] - systemd <not-affected> (Vulnerable code not present)
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=972612
NOTE: Introduced by: https://github.com/systemd/systemd/commit/a606871da508995f5ede113a8fc6538afd98966c (v213)
More information about the Secure-testing-commits
mailing list