[Secure-testing-commits] r58004 - data/CVE

security tracker role Fri, 24 Nov 2017 13:10:29 -0800

Author: sectracker
Date: 2017-11-24 21:10:14 +0000 (Fri, 24 Nov 2017)
New Revision: 58004


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-11-24 21:08:51 UTC (rev 58003)
+++ data/CVE/list       2017-11-24 21:10:14 UTC (rev 58004)
@@ -1,4 +1,4 @@
-CVE-2017-16939 [ipsec: Fix aborted xfrm policy dump crash]
+CVE-2017-16939 (The XFRM dump policy implementation in net/xfrm/xfrm_user.c in 
the ...)
        - linux 4.13.13-1
        NOTE: Fixed by: 
https://git.kernel.org/linus/1137b5e2529a8f5ca8ee709288ecba3e68044df2
 CVE-2017-16938 (A global buffer overflow in OptiPNG 0.7.6 allows remote 
attackers to ...)
@@ -402,6 +402,7 @@
 CVE-2017-1000160 (EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site 
scripting ...)
        NOT-FOR-US: EllisLab ExpressionEngine
 CVE-2017-1000158 (CPython (aka Python) up to 2.7.13 is vulnerable to an 
integer overflow ...)
+       {DLA-1190-1 DLA-1189-1}
        - python2.7 2.7.13-4
        [stretch] - python2.7 <no-dsa> (Minor issue)
        [jessie] - python2.7 <no-dsa> (Minor issue)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58004 - data/CVE

Reply via email to