[Secure-testing-commits] r54701 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Aug 12 20:45:40 UTC 2017
Author: jmm
Date: 2017-08-12 20:45:40 +0000 (Sat, 12 Aug 2017)
New Revision: 54701
Modified:
data/CVE/list
Log:
ansible no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-12 20:22:23 UTC (rev 54700)
+++ data/CVE/list 2017-08-12 20:45:40 UTC (rev 54701)
@@ -14974,6 +14974,8 @@
CVE-2017-7481 [Security issue with lookup return not tainting the jinja2 environment]
RESERVED
- ansible 2.3.1.0+dfsg-1 (bug #862666)
+ [stretch] - ansible <no-dsa> (Minor issue)
+ [jessie] - ansible <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1450018
NOTE: Fixed by: https://github.com/ansible/ansible/commit/ed56f51f185a1ffd7ea57130d260098686fcc7c2
CVE-2017-7480 (rkhunter versions before 1.4.4 are vulnerable to file download over ...)
More information about the Secure-testing-commits
mailing list