[Secure-testing-commits] r24234 - data/CVE

Salvatore Bonaccorso Wed, 30 Oct 2013 14:59:07 -0700

Author: carnil
Date: 2013-10-30 21:58:05 +0000 (Wed, 30 Oct 2013)
New Revision: 24234


Modified:
   data/CVE/list
Log:
Update entry for CVE-2013-1067/apport

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-10-30 20:46:48 UTC (rev 24233)
+++ data/CVE/list       2013-10-30 21:58:05 UTC (rev 24234)
@@ -13526,7 +13526,9 @@
 CVE-2013-1068
        RESERVED
 CVE-2013-1067 (Apport 2.12.5 and earlier uses weak permissions for core dump 
files ...)
-       TODO: check
+       - apport <unfixed> (bug #727661)
+       NOTE: apport only in experimental, so we cannot track this in 
security-tracker
+       NOTE: add it, as we have a explicit bug reference for apport
 CVE-2013-1066 (language-selector 0.110.x before 0.110.1, 0.90.x before 0.90.1, 
and ...)
        NOT-FOR-US: language-selector
 CVE-2013-1065 (backend.py in Jockey before 0.9.7-0ubuntu7.11 does not properly 
use ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r24234 - data/CVE

Reply via email to