Abhijith PA pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9976f692 by Abhijith PA at 2018-03-27T10:26:15+05:30
uwsgi in wheezy:not affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3808,6 +3808,7 @@ CVE-2018-7491 (In PrestaShop through 1.7.2.5, a
UI-Redressing/Clickjacking ...)
CVE-2018-7490 (uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use
of the ...)
{DSA-4142-1}
- uwsgi 2.0.15-10.4 (bug #891639)
+ [wheezy] - uwsgi <not-affected> (plugin package introduced in jessie)
NOTE: Fixed in 2.0.17 upstream
NOTE:
https://github.com/unbit/uwsgi/commit/0a480f435ea6feb63deb410ad2bf376ed3f05f8a
NOTE: https://blog.runesec.com/2018/03/01/uwsgi-path-traversal/
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/9976f6928fdd8cd8bf3eb1289333092561e3996f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
