[Secure-testing-commits] r56391 - data/CVE

Salvatore Bonaccorso Tue, 03 Oct 2017 21:20:43 -0700

Author: carnil
Date: 2017-10-04 04:20:16 +0000 (Wed, 04 Oct 2017)
New Revision: 56391


Modified:
   data/CVE/list
Log:
Update CVE-2017-14941: jasperreports exists

Thanks: tyhicks (via IRC)

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-10-03 22:10:45 UTC (rev 56390)
+++ data/CVE/list       2017-10-04 04:20:16 UTC (rev 56391)
@@ -177,7 +177,8 @@
 CVE-2017-14942 (Intelbras WRN 150 devices allow remote attackers to read the 
...)
        NOT-FOR-US: Intelbras WRN 150 devices
 CVE-2017-14941 (Jaspersoft JasperReports 4.7 suffers from a saved credential 
disclosure ...)
-       NOT-FOR-US: JasperReports
+       - jasperreports <unfixed>
+       NOTE: 
https://github.com/binary1985/VulnerabilityDisclosure/blob/master/JasperSoft%20JasperReports%20-%204.7%20-%20CVE-2017-14941
 CVE-2017-14940 (scan_unit_for_symbols in dwarf2.c in the Binary File 
Descriptor (BFD) ...)
        - binutils <unfixed>
        [stretch] - binutils <ignored> (Minor issue)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r56391 - data/CVE

Reply via email to