[Secure-testing-commits] r51190 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 29 19:10:34 UTC 2017
Author: carnil
Date: 2017-04-29 19:10:34 +0000 (Sat, 29 Apr 2017)
New Revision: 51190
Modified:
data/CVE/list
Log:
Update notes for CVE-2017-5661 after upstream confirmation
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-29 19:10:23 UTC (rev 51189)
+++ data/CVE/list 2017-04-29 19:10:34 UTC (rev 51190)
@@ -7593,8 +7593,9 @@
CVE-2017-5661 (In Apache FOP before 2.2, files lying on the filesystem of the server ...)
- fop <unfixed> (bug #860567)
NOTE: http://www.openwall.com/lists/oss-security/2017/04/18/2
- NOTE: probably https://issues.apache.org/jira/browse/FOP-2668
- NOTE: probably related to CVE-2017-5662
+ NOTE: Upstream bug: https://issues.apache.org/jira/browse/FOP-2668
+ NOTE: Fixed by: http://svn.apache.org/r1769967
+ NOTE: Fixed by: http://svn.apache.org/r1769968 (fix for Java 6)
CVE-2017-5660
RESERVED
CVE-2017-5659 (Apache Traffic Server before 6.2.1 generates a coredump when there is ...)
More information about the Secure-testing-commits
mailing list