Author: jmm
Date: 2017-08-22 10:46:25 +0000 (Tue, 22 Aug 2017)
New Revision: 54960
Modified:
data/CVE/list
Log:
dnsdist no-dsa
dokuwiki no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-22 09:11:27 UTC (rev 54959)
+++ data/CVE/list 2017-08-22 10:46:25 UTC (rev 54960)
@@ -171,9 +171,11 @@
NOT-FOR-US: NexusPHP
CVE-2017-12980 (DokuWiki through 2017-02-19c has stored XSS when rendering a
malicious ...)
- dokuwiki <unfixed>
+ [jessie] - dokuwiki <no-dsa> (Minor issue)
NOTE: https://github.com/splitbrain/dokuwiki/issues/2081
CVE-2017-12979 (DokuWiki through 2017-02-19c has stored XSS when rendering a
malicious ...)
- dokuwiki <unfixed>
+ [jessie] - dokuwiki <no-dsa> (Minor issue)
NOTE: https://github.com/splitbrain/dokuwiki/issues/2080
CVE-2017-12978 (lib/html.php in Cacti before 1.1.18 has XSS via the title
field of an ...)
- cacti 1.1.18+ds1-1
@@ -15868,7 +15870,8 @@
RESERVED
CVE-2017-7557 [Alteration of ACLs via API authentication bypass]
RESERVED
- - dnsdist <unfixed> (bug #872854)
+ - dnsdist <unfixed> (low; bug #872854)
+ [stretch] - dnsdist <no-dsa> (Minor issue)
NOTE:
https://dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2017-02.html
NOTE: https://downloads.powerdns.com/patches/2017-02
CVE-2017-7556 (Hawtio versions up to and including 1.5.3 are vulnerable to
CSRF ...)
@@ -44851,7 +44854,8 @@
RESERVED
CVE-2016-7069 [Crafted backend responses can cause a denial of service]
RESERVED
- - dnsdist <unfixed> (bug #872854)
+ - dnsdist <unfixed> (low; bug #872854)
+ [stretch] - dnsdist <no-dsa> (Minor issue)
NOTE:
https://dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2017-01.html
NOTE: https://downloads.powerdns.com/patches/2017-01
CVE-2016-7068
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
