[Secure-testing-commits] r42484 - data/CVE

Salvatore Bonaccorso Sun, 12 Jun 2016 07:48:41 -0700

Author: carnil
Date: 2016-06-12 14:47:55 +0000 (Sun, 12 Jun 2016)
New Revision: 42484


Modified:
   data/CVE/list
Log:
mark salt as no-dsa for CVE-2016-3176

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-06-12 14:47:47 UTC (rev 42483)
+++ data/CVE/list       2016-06-12 14:47:55 UTC (rev 42484)
@@ -6210,6 +6210,9 @@
 CVE-2016-3176 [insecure configuration of PAM external authentication service]
        RESERVED
        - salt 2015.8.8+ds-1 (bug #819184)
+       [jessie] - salt <no-dsa> (Minor issue; external_auth not by default 
usable)
+       NOTE: external_auth seems not usable by default under Jessie due to the
+       NOTE: permissions on /var/run/salt/master.
        NOTE: https://docs.saltstack.com/en/latest/topics/releases/2015.8.8.html
        NOTE: 
https://docs.saltstack.com/en/latest/topics/releases/2015.5.10.html
        NOTE: 
https://github.com/saltstack/salt/pull/31826/commits/d73f70ebb289142e4f692359fe741a54f5d2ad65


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r42484 - data/CVE

Reply via email to