Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9976f692 by Abhijith PA at 2018-03-27T10:26:15+05:30 uwsgi in wheezy:not affected - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -3808,6 +3808,7 @@ CVE-2018-7491 (In PrestaShop through 1.7.2.5, a UI-Redressing/Clickjacking ...) CVE-2018-7490 (uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the ...) {DSA-4142-1} - uwsgi 2.0.15-10.4 (bug #891639) + [wheezy] - uwsgi <not-affected> (plugin package introduced in jessie) NOTE: Fixed in 2.0.17 upstream NOTE: https://github.com/unbit/uwsgi/commit/0a480f435ea6feb63deb410ad2bf376ed3f05f8a NOTE: https://blog.runesec.com/2018/03/01/uwsgi-path-traversal/ View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits