[Secure-testing-commits] r58599 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Dec 15 09:17:14 UTC 2017


Author: carnil
Date: 2017-12-15 09:17:13 +0000 (Fri, 15 Dec 2017)
New Revision: 58599

Modified:
   data/CVE/list
Log:
Remove todo from CVE-2017-1000384

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-15 09:16:58 UTC (rev 58598)
+++ data/CVE/list	2017-12-15 09:17:13 UTC (rev 58599)
@@ -8743,7 +8743,6 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2017/11/21/2 and following.
 	NOTE: Problem mitigated in versions prior to 5.0.10 where root privileges were required to
 	NOTE: get the status information.
-	TODO: check if as well no-dsa for stretch, there are certain condition which need to be satisfied to be exploitable
 CVE-2017-1000383 (GNU Emacs version 25.3.1 (and other versions most likely) ignores ...)
 	NOTE: This CVE assignment is nonsense, GNU emacs reuses the umask of the original
 	NOTE: file when creating a backup file. That's hardly incorrect behaviour




More information about the Secure-testing-commits mailing list