[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Filed CVE-2018-7667 as #893668

[Chris Lamb]

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7ae1f61b by Chris Lamb at 2018-03-20T22:51:33-04:00
Filed CVE-2018-7667 as #893668

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2673,7 +2673,7 @@ CVE-2018-7669
 CVE-2018-7668 (TestLink through 1.9.16 allows remote attackers to read 
arbitrary ...)
        NOT-FOR-US: TestLink
 CVE-2018-7667 (Adminer through 4.3.1 has SSRF via the server parameter. ...)
-       - adminer 4.5.0-1
+       - adminer 4.5.0-1 (bug #893668)
        NOTE: 
http://hyp3rlinx.altervista.org/advisories/ADMINER-UNAUTHENTICATED-SERVER-SIDE-REQUEST-FORGERY.txt
        NOTE: 
https://github.com/vrana/adminer/commit/0fae40fb611b5c8167fa2b8d40bf576a8935a380
        NOTE: adminer 4.4.0 disallows connecting to privileged ports, and thus 
not "enumerating"



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ae1f61b098450ae3d27e5c26e94d6c83165fae8

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ae1f61b098450ae3d27e5c26e94d6c83165fae8
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits