Author: agx Date: 2017-06-04 15:37:49 +0000 (Sun, 04 Jun 2017) New Revision: 52289
Modified: data/CVE/list Log: lts: triage rabbitmq-server The admin ui is not enabled by default and if enabled only reachable from localhost. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-06-04 15:24:02 UTC (rev 52288) +++ data/CVE/list 2017-06-04 15:37:49 UTC (rev 52289) @@ -13599,6 +13599,7 @@ - rabbitmq-server <unfixed> (low; bug #863586) [stretch] - rabbitmq-server <no-dsa> (Minor issue) [jessie] - rabbitmq-server <no-dsa> (Minor issue) + [wheezy] - rabbitmq-server <no-dsa> (Minor issue) CVE-2017-4966 [authentication details are stored in browser-local storage without expiration] RESERVED - rabbitmq-server <unfixed> (low; bug #863586) @@ -13612,6 +13613,7 @@ - rabbitmq-server <unfixed> (low; bug #863586) [stretch] - rabbitmq-server <no-dsa> (Minor issue) [jessie] - rabbitmq-server <no-dsa> (Minor issue) + [wheezy] - rabbitmq-server <no-dsa> (Minor issue) CVE-2017-4964 (Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a ...) NOT-FOR-US: Cloud Foundry CVE-2017-4963 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits