[Secure-testing-commits] r58291 - data/CVE

Salvatore Bonaccorso Wed, 06 Dec 2017 01:39:08 -0800

Author: carnil
Date: 2017-12-06 09:38:47 +0000 (Wed, 06 Dec 2017)
New Revision: 58291


Modified:
   data/CVE/list
Log:
Add CVE-2017-17433/rsync

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-06 09:25:45 UTC (rev 58290)
+++ data/CVE/list       2017-12-06 09:38:47 UTC (rev 58291)
@@ -11,7 +11,8 @@
        NOTE: 
https://git.samba.org/?p=rsync.git;a=commit;h=5509597decdbd7b91994210f700329d8a35e70a1
        NOTE: 
https://git.samba.org/?p=rsync.git;a=commit;h=70aeb5fddd1b2f8e143276f8d5a085db16c593b9
 CVE-2017-17433 (The recv_files function in receiver.c in the daemon in rsync 
3.1.2, and ...)
-       TODO: check
+       - rsync <unfixed>
+       NOTE: 
https://git.samba.org/?p=rsync.git;a=commit;h=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51
 CVE-2017-17431 (GeniXCMS 1.1.5 has XSS via the from, id, lang, menuid, mod, q, 
status, ...)
        TODO: check
 CVE-2017-17430


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58291 - data/CVE

Reply via email to