Author: hertzog Date: 2014-12-22 17:30:36 +0000 (Mon, 22 Dec 2014) New Revision: 30924
Modified: data/CVE/list Log: Mark CVE-2014-9324/otrs2 as not-affected on wheezy/squeeze The problematic module got introduced in 3.2. Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-12-22 17:26:04 UTC (rev 30923) +++ data/CVE/list 2014-12-22 17:30:36 UTC (rev 30924) @@ -167,6 +167,8 @@ CVE-2014-9324 RESERVED - otrs2 3.3.9-3 + [wheezy] - otrs2 <not-affected> (Problematic module got introduced in version 3.2) + [squeeze] - otrs2 <not-affected> (Problematic module got introduced in version 3.2) NOTE: https://www.otrs.com/security-advisory-2014-06-incomplete-access-control/ CVE-2014-9322 [x86: local privesc due to bad_iret and paranoid entry incompatibility] RESERVED _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits