[Secure-testing-commits] r58291 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 6 09:38:47 UTC 2017
Author: carnil
Date: 2017-12-06 09:38:47 +0000 (Wed, 06 Dec 2017)
New Revision: 58291
Modified:
data/CVE/list
Log:
Add CVE-2017-17433/rsync
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-06 09:25:45 UTC (rev 58290)
+++ data/CVE/list 2017-12-06 09:38:47 UTC (rev 58291)
@@ -11,7 +11,8 @@
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=5509597decdbd7b91994210f700329d8a35e70a1
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=70aeb5fddd1b2f8e143276f8d5a085db16c593b9
CVE-2017-17433 (The recv_files function in receiver.c in the daemon in rsync 3.1.2, and ...)
- TODO: check
+ - rsync <unfixed>
+ NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51
CVE-2017-17431 (GeniXCMS 1.1.5 has XSS via the from, id, lang, menuid, mod, q, status, ...)
TODO: check
CVE-2017-17430
More information about the Secure-testing-commits
mailing list