thr3ads.net - Secure testing commits - [Secure-testing-commits] r16156

If this information is useful, please help other people find it:
Share via:

Nico Golde

2011-Feb-15 23:54 UTC

[Secure-testing-commits] r16156 - in data: CVE DSA

Author: nion
Date: 2011-02-15 23:54:10 +0000 (Tue, 15 Feb 2011)
New Revision: 16156

Modified:
   data/CVE/list
   data/DSA/list
Log:
DSA-2164-1(shadow)

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-02-15 21:17:02 UTC (rev 16155)
+++ data/CVE/list	2011-02-15 23:54:10 UTC (rev 16156)
@@ -744,8 +744,11 @@
 	RESERVED
 CVE-2011-0722
 	RESERVED
-CVE-2011-0721
+CVE-2011-0721 [chfn/chsh newline injection]
 	RESERVED
+	{DSA-2164-1}
+	- shadow <unfixed>
+	[lenny] - shadow <not-affected> (Vulnerable code not present)
 CVE-2010-4721 (SQL injection vulnerability in news.php in Immo Makler allows
remote ...)
 	NOT-FOR-US: Immo Makler
 CVE-2010-4720 (SQL injection vulnerability in the JExtensions JE Auto
(com_jeauto) ...)

Modified: data/DSA/list
==================================================================---
data/DSA/list	2011-02-15 21:17:02 UTC (rev 16155)
+++ data/DSA/list	2011-02-15 23:54:10 UTC (rev 16156)
@@ -1,3 +1,6 @@
+[16 Feb 2011] DSA-2164-1 shadow - missing input sanitization
+	{CVE-2011-0721}
+	[lenny] - shadow 4.1.4.2+svn3283-2+squeeze1
 [14 Feb 2011] DSA-2161-2 openjdk-6 - several
 	{CVE-2010-4476}
 	[lenny] - openjdk-6 6b18-1.8.3-2~lenny1

Secure testing commits - Feb 2011 - r16156 - in data: CVE DSA

[Secure-testing-commits] r16156 - in data: CVE DSA