CVE-2005-4890 - sudo seems quite vulnerable to me

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@18326 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Arne Wichmann <aw@anhrefn.saar.de> 2012-01-28 21:26:34 +0000
committer: Arne Wichmann <aw@anhrefn.saar.de> 2012-01-28 21:26:34 +0000
commit: 31cf4045737c82b4e2e393d8b0a7372d7c94d468 (patch)
tree: 6bdf6239d11e089af289ba7a1e4790b0f221bfaa /data/CVE/2005.list
parent: 25debfc95430c2df158b0d3341f8911381ea3770 (diff)
1 files changed, 1 insertions, 2 deletions
diff --git a/data/CVE/2005.list b/data/CVE/2005.list
index f526a09aab..71c851731e 100644
--- a/data/CVE/2005.list
+++ b/data/CVE/2005.list
@@ -12,8 +12,7 @@ CVE-2005-4890 [login: tty hijacking possible in "su" via TIOCSTI ioctl]
 	[squeeze] - shadow <no-dsa> (Minor issue)
 	[lenny] - shadow <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=173008
-	- sudo <undetermined>
-	NOTE: ubuntu indicates sudo may also be affected, but that code is completely different, so that seems unlikely
+	- sudo <unfixed> (low; bug #657784)
 CVE-2005-4889 (lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of ...)
 	- rpm 4.7.0-1 (bug #584257; unimportant)
 	NOTE: Marking as unimportant since rpm isn't used as a package manager
author	Arne Wichmann <aw@anhrefn.saar.de>	2012-01-28 21:26:34 +0000
committer	Arne Wichmann <aw@anhrefn.saar.de>	2012-01-28 21:26:34 +0000
commit	31cf4045737c82b4e2e393d8b0a7372d7c94d468 (patch)
tree	6bdf6239d11e089af289ba7a1e4790b0f221bfaa /data/CVE/2005.list
parent	25debfc95430c2df158b0d3341f8911381ea3770 (diff)