[Secure-testing-commits] r52237 - data/CVE

Salvatore Bonaccorso Fri, 02 Jun 2017 11:58:47 -0700

Author: carnil
Date: 2017-06-02 18:58:06 +0000 (Fri, 02 Jun 2017)
New Revision: 52237


Modified:
   data/CVE/list
Log:
Add followup issue in sudo

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-06-02 18:23:43 UTC (rev 52236)
+++ data/CVE/list       2017-06-02 18:58:06 UTC (rev 52237)
@@ -299,6 +299,10 @@
        RESERVED
 CVE-2014-9971
        RESERVED
+CVE-2017-XXXX [Incomplete fix for CVE-2017-1000367; Arbitrary terminal access]
+       - sudo <unfixed> (bug #863897)
+       NOTE: http://www.openwall.com/lists/oss-security/2017/06/02/7
+       NOTE: https://www.sudo.ws/repos/sudo/raw-rev/15a46f4007dd
 CVE-2017-1000367 [Potential overwrite of arbitrary files]
        {DSA-3867-1 DLA-970-1}
        - sudo 1.8.20p1-1 (bug #863731)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r52237 - data/CVE

Reply via email to