[Secure-testing-commits] r51754 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri May 19 15:49:59 UTC 2017
Author: carnil
Date: 2017-05-19 15:49:59 +0000 (Fri, 19 May 2017)
New Revision: 51754
Modified:
data/CVE/list
Log:
Two CVEs for dropbear assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-19 15:35:58 UTC (rev 51753)
+++ data/CVE/list 2017-05-19 15:49:59 UTC (rev 51754)
@@ -1,7 +1,7 @@
-CVE-2017-XXXX [information disclosure with ~/.ssh/authorized_keys symlink]
+CVE-2017-9079 [information disclosure with ~/.ssh/authorized_keys symlink]
- dropbear <unfixed> (bug #862970)
NOTE: Patch: https://secure.ucc.asn.au/hg/dropbear/rev/0d889b068123
-CVE-2017-XXXX [double-free in server TCP listener cleanup]
+CVE-2017-9078 [double-free in server TCP listener cleanup]
- dropbear <unfixed> (bug #862970)
NOTE: Patch: https://secure.ucc.asn.au/hg/dropbear/rev/c8114a48837c
CVE-2017-XXXX [Reset memory for RLE decoder]
More information about the Secure-testing-commits
mailing list