[Secure-testing-commits] r53880 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jul 25 04:45:59 UTC 2017
Author: carnil
Date: 2017-07-25 04:45:59 +0000 (Tue, 25 Jul 2017)
New Revision: 53880
Modified:
data/CVE/list
Log:
Add CVE-2015-5191/open-vm-tools
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-25 04:36:49 UTC (rev 53879)
+++ data/CVE/list 2017-07-25 04:45:59 UTC (rev 53880)
@@ -73049,8 +73049,12 @@
REJECTED
CVE-2015-5192
REJECTED
-CVE-2015-5191
+CVE-2015-5191 [local privilege escalation]
RESERVED
+ - open-vm-tools <unfixed>
+ NOTE: 9.10.x: https://github.com/vmware/open-vm-tools/commit/c1304ce8bfd9c0c33999e496bf7049d5c3d45821
+ NOTE: 10.0.x: https://github.com/vmware/open-vm-tools/commit/b3068b04880eda4ca3e13f2d34fb8ce336ad1a4f
+ NOTE: 10.1.x: https://github.com/vmware/open-vm-tools/commit/22e58289f71232310d30cf162b83b5151a937bac
CVE-2015-5190 (The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated ...)
- pcs <not-affected> (Fixed before initial release to Debian)
NOTE: https://github.com/feist/pcs/commit/634f6d93e4091946441f366e29859ed64a2c977a (0.9.144)
More information about the Secure-testing-commits
mailing list