Author: carnil Date: 2015-06-17 03:23:39 +0000 (Wed, 17 Jun 2015) New Revision: 34983
Modified: data/CVE/list Log: CVE-2015-4625 assigned for policykit-1 Modified: data/CVE/list =================================================================== --- data/CVE/list 2015-06-17 03:17:21 UTC (rev 34982) +++ data/CVE/list 2015-06-17 03:23:39 UTC (rev 34983) @@ -610,12 +610,13 @@ - linux-2.6 <not-affected> (vulnerable code not present) NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/06/10/6 NOTE: Vulnerable function introduced in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=66450a21f99636af4fafac2afd33f1a40631bc3a (v3.10-rc1) -CVE-2015-XXXX [cookie generator can wrap and two identical cookies could exist; DoS] +CVE-2015-4625 [cookie generator can wrap and two identical cookies could exist; DoS] - policykit-1 <unfixed> NOTE: http://lists.freedesktop.org/archives/polkit-devel/2015-May/000419.html NOTE: http://lists.freedesktop.org/archives/polkit-devel/2015-June/000425.html - NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/06/08/3 - TODO: check, there are furthermore open questions for the CVE request + NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=90837 + NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=90832 + NOTE: http://www.openwall.com/lists/oss-security/2015/06/08/3 CVE-2015-4412 [ruby-bson: DoS and possible injection, with durran 2013-04-07 commit] RESERVED - ruby-bson <not-affected> (corresponding change in ruby-bson not present) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits