[Secure-testing-commits] r54147 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 1 04:18:15 UTC 2017
Author: carnil
Date: 2017-08-01 04:18:14 +0000 (Tue, 01 Aug 2017)
New Revision: 54147
Modified:
data/CVE/list
Log:
Add new issue in yaml-cpp (and yaml-cpp0.3) [CVE-2017-11692]
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-01 03:37:48 UTC (rev 54146)
+++ data/CVE/list 2017-08-01 04:18:14 UTC (rev 54147)
@@ -245,7 +245,13 @@
CVE-2017-11693 (MEDHOST Document Management System contains hard-coded credentials that ...)
NOT-FOR-US: MEDHOST Document Management System
CVE-2017-11692 (The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 ...)
- TODO: check
+ - yaml-cpp <unfixed>
+ [stretch] - yaml-cpp <no-dsa> (Minor issue)
+ [jessie] - yaml-cpp <no-dsa> (Minor issue)
+ - yaml-cpp0.3 <unfixed>
+ [stretch] - yaml-cpp0.3 <no-dsa> (Minor issue)
+ [jessie] - yaml-cpp0.3 <no-dsa> (Minor issue)
+ NOTE: https://github.com/jbeder/yaml-cpp/issues/519
CVE-2016-10402 (Avira Antivirus engine versions before 8.3.36.60 allow remote code ...)
NOT-FOR-US: Avira
CVE-2017-11690
More information about the Secure-testing-commits
mailing list