[Secure-testing-commits] r58295 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 6 10:04:47 UTC 2017
Author: carnil
Date: 2017-12-06 10:04:47 +0000 (Wed, 06 Dec 2017)
New Revision: 58295
Modified:
data/CVE/list
Log:
Add bug references for rsync issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-06 09:49:25 UTC (rev 58294)
+++ data/CVE/list 2017-12-06 10:04:47 UTC (rev 58295)
@@ -7,11 +7,11 @@
CVE-2017-17435
RESERVED
CVE-2017-17434 (The daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, ...)
- - rsync <unfixed>
+ - rsync <unfixed> (bug #883665)
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=5509597decdbd7b91994210f700329d8a35e70a1
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=70aeb5fddd1b2f8e143276f8d5a085db16c593b9
CVE-2017-17433 (The recv_files function in receiver.c in the daemon in rsync 3.1.2, and ...)
- - rsync <unfixed>
+ - rsync <unfixed> (bug #883667)
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51
CVE-2017-17431 (GeniXCMS 1.1.5 has XSS via the from, id, lang, menuid, mod, q, status, ...)
NOT-FOR-US: GeniXCMS
More information about the Secure-testing-commits
mailing list