[Secure-testing-commits] r58308 - data/CVE

Salvatore Bonaccorso Wed, 06 Dec 2017 12:36:10 -0800

Author: carnil
Date: 2017-12-06 20:35:55 +0000 (Wed, 06 Dec 2017)
New Revision: 58308


Modified:
   data/CVE/list
Log:
CVE-2017-17051/nova was not correctly fixed, mark again as <unfixed>

The patch for CVE-2017-17051 is missing, only the 'regression fix' patch
was applied.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-06 20:21:56 UTC (rev 58307)
+++ data/CVE/list       2017-12-06 20:35:55 UTC (rev 58308)
@@ -5571,7 +5571,7 @@
 CVE-2017-16240
        RESERVED
 CVE-2017-17051 (An issue was discovered in the default FilterScheduler in 
OpenStack ...)
-       - nova 2:16.0.3-5 (bug #883621)
+       - nova <unfixed> (bug #883621)
        [stretch] - nova <not-affected> (Fix for CVE-2017-16239 not applied and 
not affecting 14.x.y)
        [jessie] - nova <not-affected> (Vulnerable code not present)
        [wheezy] - nova <not-affected> (Vulnerable code not present)
@@ -5583,8 +5583,7 @@
        [wheezy] - nova <not-affected> (Vulnerble code introduced later)
        NOTE: https://launchpad.net/bugs/1664931
        NOTE: https://security.openstack.org/ossa/OSSA-2017-005.html
-       NOTE: Regression fix: 
http://www.openwall.com/lists/oss-security/2017/12/05/4 got
-       NOTE: a seprate CVE.
+       NOTE: Regression fix: 
http://www.openwall.com/lists/oss-security/2017/12/05/4
 CVE-2017-16238
        RESERVED
 CVE-2017-16237 (In Vir.IT eXplorer Anti-Virus before 8.5.42, the driver file 
...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58308 - data/CVE

Reply via email to