[Secure-testing-commits] r44687 - in data: . CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Sep 17 15:13:08 UTC 2016 

Author: carnil
Date: 2016-09-17 15:13:08 +0000 (Sat, 17 Sep 2016)
New Revision: 44687

Modified:
   data/CVE/list
   data/next-point-update.txt
Log:
policykit-1 fixes included in recent point release

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-09-17 15:06:39 UTC (rev 44686)
+++ data/CVE/list	2016-09-17 15:13:08 UTC (rev 44687)
@@ -38620,7 +38620,7 @@
 CVE-2015-4625 (Integer overflow in the authentication_agent_new_cookie function in ...)
 	[experimental] - policykit-1 0.113-1
 	- policykit-1 0.105-12 (low; bug #796134)
-	[jessie] - policykit-1 <no-dsa> (Minor issue)
+	[jessie] - policykit-1 0.105-15~deb8u1
 	[wheezy] - policykit-1 <no-dsa> (Minor issue)
 	[squeeze] - policykit-1 <no-dsa> (Minor issue)
 	NOTE: http://lists.freedesktop.org/archives/polkit-devel/2015-May/000419.html
@@ -41363,7 +41363,7 @@
 CVE-2015-3255 (The polkit_backend_action_pool_init function in ...)
 	[experimental] - policykit-1 0.113-1
 	- policykit-1 0.105-12 (bug #796134)
-	[jessie] - policykit-1 <no-dsa> (Minor issue)
+	[jessie] - policykit-1 0.105-15~deb8u1
 	[wheezy] - policykit-1 <no-dsa> (Minor issue)
 	[squeeze] - policykit-1 <no-dsa> (Minor issue)
 	NOTE: http://cgit.freedesktop.org/polkit/commit/?id=9f5e0c731784003bd4d6fc75ab739ff8b2ea269f
@@ -41550,7 +41550,7 @@
 CVE-2015-3218 (The authentication_agent_new function in ...)
 	[experimental] - policykit-1 0.113-1
 	- policykit-1 0.105-11 (bug #787932)
-	[jessie] - policykit-1 <no-dsa> (Minor issue)
+	[jessie] - policykit-1 0.105-15~deb8u1
 	[wheezy] - policykit-1 <no-dsa> (Minor issue)
 	[squeeze] - policykit-1 <not-affected> (Vulnerable code introduced later)
 	NOTE: http://lists.freedesktop.org/archives/polkit-devel/2015-May/000420.html

Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt	2016-09-17 15:06:39 UTC (rev 44686)
+++ data/next-point-update.txt	2016-09-17 15:13:08 UTC (rev 44687)
@@ -1,9 +1,3 @@
-CVE-2015-3255
-	[jessie] - policykit-1 0.105-15~deb8u1
-CVE-2015-4625
-	[jessie] - policykit-1 0.105-15~deb8u1
-CVE-2015-3218
-	[jessie] - policykit-1 0.105-15~deb8u1
 CVE-2015-8872
 	[jessie] - dosfstools 3.0.27-1+deb8u1
 CVE-2016-4804

More information about the Secure-testing-commits mailing list