Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8ec37e33 by Salvatore Bonaccorso at 2022-11-23T22:27:57+01:00
Add CVE-2009-114{2,3}/open-vm-tools
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -544185,9 +544185,14 @@ CVE-2009-1145
CVE-2009-1144 (Untrusted search path vulnerability in the Gentoo package of
Xpdf befo ...)
- xpdf <not-affected> (Gentoo specific vulnerability in building xpdf)
CVE-2009-1143 (An issue was discovered in open-vm-tools 2009.03.18-154848.
Local user ...)
- TODO: check
+ - open-vm-tools 2:12.0.0-1
+ [bullseye] - open-vm-tools <no-dsa> (Minor issue; mount.vmhgfs not suid
root in Debian)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=372070
+ NOTE: Removing hgfsmounter/mount.vmhgfs:
https://github.com/vmware/open-vm-tools/commit/61331a189a0eeb76f014db28288b06c0323bc0b9
(stable-12.0.0)
CVE-2009-1142 (An issue was discovered in open-vm-tools 2009.03.18-154848.
Local user ...)
- TODO: check
+ - open-vm-tools 2:8.4.2+2011.08.21-471295-1
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=474285
+ NOTE:
https://github.com/vmware/open-vm-tools/commit/76dccec4dd4002cec240e71e0042cdacfae6cca7
(2011.03.28-387002)
CVE-2009-1141 (Microsoft Internet Explorer 6 for Windows XP SP2 and SP3 and
Server 20 ...)
NOT-FOR-US: Microsoft
CVE-2009-1140 (Microsoft Internet Explorer 5.01 SP4; 6 SP1; 6 and 7 for
Windows XP SP ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ec37e33a9233a98ed30aee7ed1077b61656138e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ec37e33a9233a98ed30aee7ed1077b61656138e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
