Author: apo
Date: 2017-11-12 20:43:55 +0000 (Sun, 12 Nov 2017)
New Revision: 57583
Modified:
data/CVE/list
Log:
CVE-2017-14990,wordpress: Not fixed in Wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-12 20:41:09 UTC (rev 57582)
+++ data/CVE/list 2017-11-12 20:43:55 UTC (rev 57583)
@@ -4864,9 +4864,10 @@
CVE-2017-14758 (OpenText Document Sciences xPression (formerly EMC Document
Sciences ...)
NOT-FOR-US: EMC
CVE-2017-14990 (WordPress 4.8.2 stores cleartext wp_signups.activation_key
values (but ...)
- {DSA-3997-1 DLA-1151-1}
+ {DSA-3997-1}
- wordpress 4.8.2+dfsg-2 (bug #877629)
NOTE: https://core.trac.wordpress.org/ticket/38474
+ NOTE: Wordpress in Wheezy requires a database upgrade and backports of
new functions
CVE-2017-14989 (A use-after-free in RenderFreetype in MagickCore/annotate.c in
...)
{DLA-1131-1}
- imagemagick <unfixed> (bug #878562)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
