[Secure-testing-commits] r53160 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jul 4 05:15:28 UTC 2017
Author: carnil
Date: 2017-07-04 05:15:28 +0000 (Tue, 04 Jul 2017)
New Revision: 53160
Modified:
data/CVE/list
Log:
Add two new rpm issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-04 04:51:31 UTC (rev 53159)
+++ data/CVE/list 2017-07-04 05:15:28 UTC (rev 53160)
@@ -9015,10 +9015,14 @@
[experimental] - nss 2:3.29-1
- nss 2:3.26.2-1.1 (bug #863839)
NOTE: https://hg.mozilla.org/projects/nss/rev/55ea60effd0d
-CVE-2017-7501
+CVE-2017-7501 [Following symlinks to files when installing packages allows privilege escalation]
RESERVED
-CVE-2017-7500
+ - rpm <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1452133
+CVE-2017-7500 [Following symlinks to directories when installing packages allows privilege escalation]
RESERVED
+ - rpm <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1450369
CVE-2017-7499
REJECTED
CVE-2017-7498
More information about the Secure-testing-commits
mailing list