Author: sunweaver
Date: 2016-01-15 10:12:46 +0000 (Fri, 15 Jan 2016)
New Revision: 38940
Modified:
data/CVE/list
Log:
OpenSSH: Provide some background information on X11 SECURITY extension related
to OpenSSH.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-15 10:07:45 UTC (rev 38939)
+++ data/CVE/list 2016-01-15 10:12:46 UTC (rev 38940)
@@ -391,6 +391,7 @@
CVE-2016-XXXX [Eliminate the fallback from untrusted X11-forwarding to trusted
forwarding for cases when the X server disables the SECURITY extension]
- openssh 1:7.1p2-1
NOTE:
https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
+ NOTE: Background information on X11 SECURITY extension and SSH:
https://thejh.net/written-stuff/openssh-6.8-xsecurity
CVE-2016-XXXX [Fix an out of-bound read access in the packet handling code]
- openssh 1:7.1p2-1
[squeeze] - openssh <not-affected> (Issue introduced in OpenSSH 6.8)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
