[Secure-testing-commits] r46391 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 21 19:41:52 UTC 2016
Author: carnil
Date: 2016-11-21 19:41:52 +0000 (Mon, 21 Nov 2016)
New Revision: 46391
Modified:
data/CVE/list
Log:
Update status for CVE-2016-0727
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-21 19:40:28 UTC (rev 46390)
+++ data/CVE/list 2016-11-21 19:41:52 UTC (rev 46391)
@@ -28986,11 +28986,12 @@
NOTE: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/
CVE-2016-0727 [NTP statsdir cleanup cronjob insecure]
RESERVED
- - ntp 1:4.2.8p8+dfsg-1.1 (low; bug #839998)
+ - ntp 1:4.2.8p9+dfsg-2 (low; bug #839998)
[jessie] - ntp <no-dsa> (Minor issue)
[wheezy] - ntp <no-dsa> (Minor issue)
NOTE: https://bugs.launchpad.net/ubuntu/+source/ntp/+bug/1528050
NOTE: http://www.halfdog.net/Security/2015/NtpCronjobUserNtpToRootPrivilegeEscalation/
+ NOTE: Originally addressed in 1:4.2.8p8+dfsg-1.1, then refixed in 1:4.2.8p9+dfsg-2
CVE-2016-0726
RESERVED
- nagios3 <not-affected> (Specific to Fedora installation)
More information about the Secure-testing-commits
mailing list