[Secure-testing-commits] r48326 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jan 24 09:11:51 UTC 2017
Author: carnil
Date: 2017-01-24 09:11:51 +0000 (Tue, 24 Jan 2017)
New Revision: 48326
Modified:
data/CVE/list
Log:
Update status for CVE-2016-10156
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-24 09:11:39 UTC (rev 48325)
+++ data/CVE/list 2017-01-24 09:11:51 UTC (rev 48326)
@@ -93,10 +93,11 @@
TODO: check
CVE-2016-10156 (A flaw in systemd v228 in /src/basic/fs-util.c caused world writable ...)
- systemd 229-1
+ [jessie] - systemd <not-affected> (Vulnerability introduced in v228)
+ [wheezy] - systemd <not-affected> (Vulnerability introduced in v228)
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1020601
- NOTE: https://github.com/systemd/systemd/commit/06eeacb6fe029804f296b065b3ce91e796e1cd0e (v229)
- NOTE: https://github.com/systemd/systemd/commit/ee735086f8670be1591fa9593e80dd60163a7a2f (v228)
- TODO: check for older version, contacted SuSE security team to open https://bugzilla.suse.com/show_bug.cgi?id=1020601
+ NOTE: Fixed by: https://github.com/systemd/systemd/commit/06eeacb6fe029804f296b065b3ce91e796e1cd0e (v229)
+ NOTE: Introduced by: https://github.com/systemd/systemd/commit/ee735086f8670be1591fa9593e80dd60163a7a2f (v228)
CVE-2017-XXXX [Reflected XSS vulnerability]
- cgiemail <unfixed> (bug #852031)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/20/6
More information about the Secure-testing-commits
mailing list