[Secure-testing-commits] r53548 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 16 13:34:51 UTC 2017
Author: carnil
Date: 2017-07-16 13:34:51 +0000 (Sun, 16 Jul 2017)
New Revision: 53548
Modified:
data/CVE/list
Log:
Add issue in yadm, #868300
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-16 13:14:02 UTC (rev 53547)
+++ data/CVE/list 2017-07-16 13:34:51 UTC (rev 53548)
@@ -1,3 +1,6 @@
+CVE-2017-XXXX [race condition allows access to ssh and pgp keys]
+ - yadm <unfixed> (bug #868300)
+ NOTE: https://github.com/TheLocehiliosan/yadm/issues/74
CVE-2017-11342 (There is an illegal address access in ast.cpp of LibSass 3.4.5. A ...)
TODO: check
CVE-2017-11341 (There is a heap based buffer over-read in lexer.hpp of LibSass 3.4.5. A ...)
More information about the Secure-testing-commits
mailing list