Author: jmm Date: 2017-08-22 10:46:25 +0000 (Tue, 22 Aug 2017) New Revision: 54960
Modified: data/CVE/list Log: dnsdist no-dsa dokuwiki no-dsa Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-08-22 09:11:27 UTC (rev 54959) +++ data/CVE/list 2017-08-22 10:46:25 UTC (rev 54960) @@ -171,9 +171,11 @@ NOT-FOR-US: NexusPHP CVE-2017-12980 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...) - dokuwiki <unfixed> + [jessie] - dokuwiki <no-dsa> (Minor issue) NOTE: https://github.com/splitbrain/dokuwiki/issues/2081 CVE-2017-12979 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...) - dokuwiki <unfixed> + [jessie] - dokuwiki <no-dsa> (Minor issue) NOTE: https://github.com/splitbrain/dokuwiki/issues/2080 CVE-2017-12978 (lib/html.php in Cacti before 1.1.18 has XSS via the title field of an ...) - cacti 1.1.18+ds1-1 @@ -15868,7 +15870,8 @@ RESERVED CVE-2017-7557 [Alteration of ACLs via API authentication bypass] RESERVED - - dnsdist <unfixed> (bug #872854) + - dnsdist <unfixed> (low; bug #872854) + [stretch] - dnsdist <no-dsa> (Minor issue) NOTE: https://dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2017-02.html NOTE: https://downloads.powerdns.com/patches/2017-02 CVE-2017-7556 (Hawtio versions up to and including 1.5.3 are vulnerable to CSRF ...) @@ -44851,7 +44854,8 @@ RESERVED CVE-2016-7069 [Crafted backend responses can cause a denial of service] RESERVED - - dnsdist <unfixed> (bug #872854) + - dnsdist <unfixed> (low; bug #872854) + [stretch] - dnsdist <no-dsa> (Minor issue) NOTE: https://dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2017-01.html NOTE: https://downloads.powerdns.com/patches/2017-01 CVE-2016-7068 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits