Author: seb
Date: 2017-05-23 11:50:29 +0000 (Tue, 23 May 2017)
New Revision: 51880
Modified:
data/CVE/list
Log:
Mark CVE-2017-9066 (wordpress) as not affecting versions < 4.6
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-23 10:22:21 UTC (rev 51879)
+++ data/CVE/list 2017-05-23 11:50:29 UTC (rev 51880)
@@ -477,6 +477,7 @@
NOT-FOR-US: HooHoo Trip Mate
CVE-2017-9066 (In WordPress before 4.7.5, there is insufficient redirect
validation in ...)
- wordpress 4.7.5+dfsg-1 (bug #862816)
+ [jessie] - wordpress <not-affected> (Vulnerable code not present,
Request library introduced in 4.6)
NOTE: https://wordpress.org/news/2017/05/wordpress-4-7-5/
NOTE:
https://github.com/WordPress/WordPress/commit/76d77e927bb4d0f87c7262a50e28d84e01fd2b11
CVE-2017-9065 (In WordPress before 4.7.5, there is a lack of capability checks
for ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
