[Secure-testing-commits] r50561 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Apr 11 05:03:10 UTC 2017
Author: carnil
Date: 2017-04-11 05:03:10 +0000 (Tue, 11 Apr 2017)
New Revision: 50561
Modified:
data/CVE/list
Log:
Add two new botan1.10 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-11 04:55:20 UTC (rev 50560)
+++ data/CVE/list 2017-04-11 05:03:10 UTC (rev 50561)
@@ -1228,8 +1228,10 @@
RESERVED
CVE-2017-7253 (Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: ...)
NOT-FOR-US: Dahua IP Camera devices
-CVE-2017-7252
+CVE-2017-7252 [Incorrect bcrypt computation]
RESERVED
+ - botan1.10 <not-affected> (Introduced in 1.11.0)
+ NOTE: Bug introduced in 1.11.0, fixed in 2.1.0.
CVE-2017-7251 (A Cross-Site Scripting (XSS) was discovered in pi-engine/pi 2.5.0. The ...)
NOT-FOR-US: pi-engine
CVE-2017-7250 (A Cross-Site Scripting (XSS) was discovered in Gazelle before ...)
@@ -13810,8 +13812,10 @@
RESERVED
CVE-2017-2802
RESERVED
-CVE-2017-2801
+CVE-2017-2801 [Incorrect comparison in X.509 DN strings]
RESERVED
+ - botan1.10 <unfixed>
+ NOTE: Bug introduced in 1.6.0 or earlier, fixed in 2.1.0 and 1.10.16
CVE-2017-2800
RESERVED
CVE-2017-2799
More information about the Secure-testing-commits
mailing list