Author: jmm Date: 2017-10-25 07:32:10 +0000 (Wed, 25 Oct 2017) New Revision: 56956
Modified: data/CVE/list Log: new busybox issues openvpn fixed Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-10-25 07:23:56 UTC (rev 56955) +++ data/CVE/list 2017-10-25 07:32:10 UTC (rev 56956) @@ -1,7 +1,11 @@ CVE-2017-15874 (archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an ...) - TODO: check + - busybox <unfixed> (bug #879732) + [stretch] - busybox <no-dsa> (Minor issue) + [jessie] - busybox <no-dsa> (Minor issue) CVE-2017-15873 (The get_next_block function in archival/libarchive/decompress_bunzip2.c ...) - TODO: check + - busybox <unfixed> (bug #879732) + [stretch] - busybox <no-dsa> (Minor issue) + [jessie] - busybox <no-dsa> (Minor issue) CVE-2017-15872 (phpwcms 1.8.9 has XSS in include/inc_tmpl/admin.edituser.tmpl.php and ...) NOT-FOR-US: phpwcms CVE-2017-15871 (** DISPUTED ** The deserialize function in serialize-to-js through ...) @@ -10248,7 +10252,7 @@ RESERVED NOT-FOR-US: Red Hat JBoss EAP CVE-2017-12166 (OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to ...) - - openvpn <unfixed> (bug #877089) + - openvpn 2.4.4-1 (bug #877089) [stretch] - openvpn <no-dsa> (Minor issue) [jessie] - openvpn <no-dsa> (Minor issue) [wheezy] - openvpn <no-dsa> (Minor issue) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits