[Secure-testing-commits] r52289 - data/CVE

Guido Guenther Sun, 04 Jun 2017 08:38:27 -0700

Author: agx
Date: 2017-06-04 15:37:49 +0000 (Sun, 04 Jun 2017)
New Revision: 52289


Modified:
   data/CVE/list
Log:
lts: triage rabbitmq-server

The admin ui is not enabled by default and if enabled only reachable
from localhost.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-06-04 15:24:02 UTC (rev 52288)
+++ data/CVE/list       2017-06-04 15:37:49 UTC (rev 52289)
@@ -13599,6 +13599,7 @@
        - rabbitmq-server <unfixed> (low; bug #863586)
        [stretch] - rabbitmq-server <no-dsa> (Minor issue)
        [jessie] - rabbitmq-server <no-dsa> (Minor issue)
+       [wheezy] - rabbitmq-server <no-dsa> (Minor issue)
 CVE-2017-4966 [authentication details are stored in browser-local storage 
without expiration]
        RESERVED
        - rabbitmq-server <unfixed> (low; bug #863586)
@@ -13612,6 +13613,7 @@
        - rabbitmq-server <unfixed> (low; bug #863586)
        [stretch] - rabbitmq-server <no-dsa> (Minor issue)
        [jessie] - rabbitmq-server <no-dsa> (Minor issue)
+       [wheezy] - rabbitmq-server <no-dsa> (Minor issue)
 CVE-2017-4964 (Cloud Foundry Foundation BOSH Azure CPI v22 could potentially 
allow a ...)
        NOT-FOR-US: Cloud Foundry
 CVE-2017-4963


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r52289 - data/CVE

Reply via email to