[Secure-testing-commits] r57705 - data/CVE

Moritz Muehlenhoff Fri, 17 Nov 2017 01:27:53 -0800

Author: jmm
Date: 2017-11-17 09:26:56 +0000 (Fri, 17 Nov 2017)
New Revision: 57705


Modified:
   data/CVE/list
Log:
new python issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-11-17 09:26:09 UTC (rev 57704)
+++ data/CVE/list       2017-11-17 09:26:56 UTC (rev 57705)
@@ -108,7 +108,9 @@
 CVE-2017-1000160 (EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site 
scripting ...)
        NOT-FOR-US: EllisLab ExpressionEngine
 CVE-2017-1000158 (CPython (aka Python) up to 2.7.13 is vulnerable to an 
integer overflow ...)
-       TODO: check
+       - python2.7 <unfixed>
+       TODO: check other versions
+       NOTE: https://bugs.python.org/issue30657
 CVE-2017-1000129 (Serendipity 2.0.3 is vulnerable to a SQL injection in the 
blog ...)
        - serendipity <removed>
 CVE-2017-1000125 (Codiad(full version) is vulnerable to write anything to 
configure file ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r57705 - data/CVE

Reply via email to