[Secure-testing-commits] r56388 - data/CVE

Moritz Muehlenhoff Tue, 03 Oct 2017 14:43:31 -0700

Author: jmm
Date: 2017-10-03 21:43:02 +0000 (Tue, 03 Oct 2017)
New Revision: 56388


Modified:
   data/CVE/list
Log:
new node-tough-cookie issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-10-03 21:35:33 UTC (rev 56387)
+++ data/CVE/list       2017-10-03 21:43:02 UTC (rev 56388)
@@ -1,7 +1,7 @@
 CVE-2017-15011 (The named pipes in qtsingleapp in Qt 5.x, as used in 
qBittorrent and ...)
-       TODO: check
+       TODO: check, can't make much sense of it, probably limited to Win32
 CVE-2017-15010 (A ReDoS (regular expression denial of service) flaw was found 
in the ...)
-       TODO: check
+       - node-tough-cookie <unfixed>
 CVE-2017-15009 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to 
reflected ...)
        NOT-FOR-US: PRTG Network Monitor
 CVE-2017-15008 (PRTG Network Monitor version 17.3.33.2830 is vulnerable to 
stored ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r56388 - data/CVE

Reply via email to