[Secure-testing-commits] r58355 - data/CVE

Salvatore Bonaccorso Fri, 08 Dec 2017 01:17:28 -0800

Author: carnil
Date: 2017-12-08 09:16:56 +0000 (Fri, 08 Dec 2017)
New Revision: 58355


Modified:
   data/CVE/list
Log:
Add CVE-2017-17461/node-marked

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-08 09:10:15 UTC (rev 58354)
+++ data/CVE/list       2017-12-08 09:16:56 UTC (rev 58355)
@@ -27,7 +27,9 @@
 CVE-2017-17462
        RESERVED
 CVE-2017-17461 (A Regular expression Denial of Service (ReDoS) vulnerability 
in the ...)
-       TODO: check
+       - node-marked <unfixed> (unimportant)
+       NOTE: 
https://www.checkmarx.com/advisories/regular-expression-denial-service-redos-vulnerability-marked-npm-package/
+       NOTE: nodejs not covered by security support
 CVE-2017-17460
        RESERVED
 CVE-2018-1340


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58355 - data/CVE

Reply via email to