[Secure-testing-commits] r46405 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 21 21:18:48 UTC 2016
Author: carnil
Date: 2016-11-21 21:18:48 +0000 (Mon, 21 Nov 2016)
New Revision: 46405
Modified:
data/CVE/list
Log:
Mark sniffit as no-dsa
NOTE: sniffit is not installed setuid in Debian.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-21 20:51:54 UTC (rev 46404)
+++ data/CVE/list 2016-11-21 21:18:48 UTC (rev 46405)
@@ -67151,6 +67151,7 @@
RESERVED
{DLA-713-1}
- sniffit 0.3.7.beta-20 (bug #845122)
+ [jessie] - sniffit <no-dsa> (Can be fixed via point release, not installed setuid in Debian)
NOTE: http://hmarco.org/bugs/CVE-2014-5439-sniffit_0.3.7-stack-buffer-overflow.html
CVE-2014-5438 (Cross-site scripting (XSS) vulnerability in ARRIS Touchstone TG862G/CT ...)
NOT-FOR-US: Arris Touchstone
More information about the Secure-testing-commits
mailing list