Bug#887488: [Pkg-electronics-devel] Bug#887488: openocd: CVE-2018-5704 cross protocol scripting attack

On Wed, Jan 17, 2018 at 10:50:44AM +0100, Guido Günther wrote: > the following vulnerability was published for openocd. > > CVE-2018-5704[0]: > | Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use > | HTTP POST for sending data to 127.0.0.1 port , which allows remote > | att

Bug#887488: openocd: CVE-2018-5704 cross protocol scripting attack

Package: openocd X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: grave Tags: important Hi, the following vulnerability was published for openocd. CVE-2018-5704[0]: | Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use | HTTP POST fo