[Secure-testing-commits] r44460 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Sep 9 20:53:04 UTC 2016
Author: jmm
Date: 2016-09-09 20:53:04 +0000 (Fri, 09 Sep 2016)
New Revision: 44460
Modified:
data/CVE/list
Log:
mark adodb as unimportant
remove amanda non-issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-09 19:32:06 UTC (rev 44459)
+++ data/CVE/list 2016-09-09 20:53:04 UTC (rev 44460)
@@ -54,7 +54,7 @@
CVE-2016-XXXX [SGI security bug]
- imagemagick <unfixed> (bug #836776)
CVE-2016-XXXX [incorrect quoting may allow SQL injection]
- - libphp-adodb <unfixed>
+ - libphp-adodb <unfixed> (unimportant)
NOTE: https://github.com/ADOdb/ADOdb/issues/226
NOTE: https://github.com/ADOdb/ADOdb/commit/bd9eca9
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/09/07/8
@@ -350,9 +350,6 @@
RESERVED
CVE-2016-7095
RESERVED
-CVE-2016-XXXX [allows the 'amanda' user to execute any code as root, and to execute an interactive shell as root]
- - amanda 1:3.3.9-1
- TODO: check
CVE-2016-7111
RESERVED
- mantis <not-affected> (Vulnerable code introduced in 1.3.0-rc.2)
More information about the Secure-testing-commits
mailing list