Author: carnil Date: 2017-12-06 20:35:55 +0000 (Wed, 06 Dec 2017) New Revision: 58308
Modified: data/CVE/list Log: CVE-2017-17051/nova was not correctly fixed, mark again as <unfixed> The patch for CVE-2017-17051 is missing, only the 'regression fix' patch was applied. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-12-06 20:21:56 UTC (rev 58307) +++ data/CVE/list 2017-12-06 20:35:55 UTC (rev 58308) @@ -5571,7 +5571,7 @@ CVE-2017-16240 RESERVED CVE-2017-17051 (An issue was discovered in the default FilterScheduler in OpenStack ...) - - nova 2:16.0.3-5 (bug #883621) + - nova <unfixed> (bug #883621) [stretch] - nova <not-affected> (Fix for CVE-2017-16239 not applied and not affecting 14.x.y) [jessie] - nova <not-affected> (Vulnerable code not present) [wheezy] - nova <not-affected> (Vulnerable code not present) @@ -5583,8 +5583,7 @@ [wheezy] - nova <not-affected> (Vulnerble code introduced later) NOTE: https://launchpad.net/bugs/1664931 NOTE: https://security.openstack.org/ossa/OSSA-2017-005.html - NOTE: Regression fix: http://www.openwall.com/lists/oss-security/2017/12/05/4 got - NOTE: a seprate CVE. + NOTE: Regression fix: http://www.openwall.com/lists/oss-security/2017/12/05/4 CVE-2017-16238 RESERVED CVE-2017-16237 (In Vir.IT eXplorer Anti-Virus before 8.5.42, the driver file ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits