[Secure-testing-commits] r58323 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-12-07 13:35:28 +0000 (Thu, 07 Dec 2017)
New Revision: 58323

Modified:
   data/CVE/list
Log:
Add CVE-2017-16921/otrs2

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-07 12:53:29 UTC (rev 58322)
+++ data/CVE/list	2017-12-07 13:35:28 UTC (rev 58323)
@@ -3651,8 +3651,13 @@
 	NOT-FOR-US: Shenzhen Tenda
 CVE-2017-16922
 	RESERVED
-CVE-2017-16921
+CVE-2017-16921 [OSA-2017-09: Remote code execution]
 	RESERVED
+	- otrs2 <unfixed>
+	NOTE: OTRS-6: https://github.com/OTRS/otrs/commit/d12797bf1efa6722c2ba9af6d8238446c2903cd1
+	NOTE: OTRS-5: https://github.com/OTRS/otrs/commit/d433518d7bd8e9e079af67ef9ea7079cd2f59646
+	NOTE: OTRS-4: https://github.com/OTRS/otrs/commit/368bc37f137e6344f4db014ee2e03c38e2fc62d2
+	NOTE: OTRS-4: https://github.com/OTRS/otrs/commit/4043ebb2580cd8f87e7758e95bf0d77eea5c82ae
 CVE-2017-16920 (v5/config/system.php in dayrui FineCms 5.2.0 has a default SYS_KEY ...)
 	NOT-FOR-US: dayrui FineCms
 CVE-2017-16919 (MapOS 3.1.11 and earlier has a Stored Cross-site Scripting (XSS) ...)