[Secure-testing-commits] r55164 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 28 19:04:08 UTC 2017
Author: carnil
Date: 2017-08-28 19:04:08 +0000 (Mon, 28 Aug 2017)
New Revision: 55164
Modified:
data/CVE/list
Log:
Wrap two longer note lines
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-28 19:03:44 UTC (rev 55163)
+++ data/CVE/list 2017-08-28 19:04:08 UTC (rev 55164)
@@ -2647,13 +2647,15 @@
NOTE: https://www.mercurial-scm.org/repo/hg/rev/ca398a50ca00
NOTE: https://www.mercurial-scm.org/repo/hg/rev/00a75672a9cb
NOTE: https://www.mercurial-scm.org/repo/hg/rev/943c91326b23
- NOTE: 3.7 and 4.1 backports also available at https://bitbucket.org/atlassian/mercurial/commits/branch/sec-3.7 and https://bitbucket.org/octobus/mercurial-backport/branch/backport-4.1
+ NOTE: 3.7 and 4.1 backports also available at https://bitbucket.org/atlassian/mercurial/commits/branch/sec-3.7
+ NOTE: and https://bitbucket.org/octobus/mercurial-backport/branch/backport-4.1
CVE-2017-1000115 [path traversal via symlink]
- mercurial 4.3.1-1 (bug #871709)
NOTE: https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.3_.282017-08-10.29
NOTE: https://www.mercurial-scm.org/repo/hg/rev/47ea28293d30 (test)
NOTE: https://www.mercurial-scm.org/repo/hg/rev/377e8ddaebef (fix)
- NOTE: 3.7 and 4.1 backports available at https://bitbucket.org/atlassian/mercurial/commits/branch/sec-3.7 and https://bitbucket.org/octobus/mercurial-backport/branch/backport-4.1CVE-2017-12777
+ NOTE: 3.7 and 4.1 backports available at https://bitbucket.org/atlassian/mercurial/commits/branch/sec-3.7
+ NOTE: and https://bitbucket.org/octobus/mercurial-backport/branch/backport-4.1CVE-2017-12777
CVE-2017-12777 (Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via some ...)
NOT-FOR-US: NexusPHP
CVE-2017-12776 (SQL injection vulnerability in reports.php in NexusPHP 1.5 allows ...)
More information about the Secure-testing-commits
mailing list