[Git][security-tracker-team/security-tracker][master] Add CVE-2009-114{2,3}/open-vm-tools
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Nov 23 21:28:30 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8ec37e33 by Salvatore Bonaccorso at 2022-11-23T22:27:57+01:00
Add CVE-2009-114{2,3}/open-vm-tools
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -544185,9 +544185,14 @@ CVE-2009-1145
CVE-2009-1144 (Untrusted search path vulnerability in the Gentoo package of Xpdf befo ...)
- xpdf <not-affected> (Gentoo specific vulnerability in building xpdf)
CVE-2009-1143 (An issue was discovered in open-vm-tools 2009.03.18-154848. Local user ...)
- TODO: check
+ - open-vm-tools 2:12.0.0-1
+ [bullseye] - open-vm-tools <no-dsa> (Minor issue; mount.vmhgfs not suid root in Debian)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=372070
+ NOTE: Removing hgfsmounter/mount.vmhgfs: https://github.com/vmware/open-vm-tools/commit/61331a189a0eeb76f014db28288b06c0323bc0b9 (stable-12.0.0)
CVE-2009-1142 (An issue was discovered in open-vm-tools 2009.03.18-154848. Local user ...)
- TODO: check
+ - open-vm-tools 2:8.4.2+2011.08.21-471295-1
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=474285
+ NOTE: https://github.com/vmware/open-vm-tools/commit/76dccec4dd4002cec240e71e0042cdacfae6cca7 (2011.03.28-387002)
CVE-2009-1141 (Microsoft Internet Explorer 6 for Windows XP SP2 and SP3 and Server 20 ...)
NOT-FOR-US: Microsoft
CVE-2009-1140 (Microsoft Internet Explorer 5.01 SP4; 6 SP1; 6 and 7 for Windows XP SP ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ec37e33a9233a98ed30aee7ed1077b61656138e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ec37e33a9233a98ed30aee7ed1077b61656138e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221123/91826c4e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list