[Secure-testing-commits] r58588 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 15 07:34:49 UTC 2017
Author: carnil
Date: 2017-12-15 07:34:48 +0000 (Fri, 15 Dec 2017)
New Revision: 58588
Modified:
data/CVE/list
Log:
Add CVE-2017-17405/ruby*
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-14 21:10:14 UTC (rev 58587)
+++ data/CVE/list 2017-12-15 07:34:48 UTC (rev 58588)
@@ -3196,8 +3196,14 @@
RESERVED
CVE-2017-17406
RESERVED
-CVE-2017-17405
+CVE-2017-17405 [Command injection vulnerability in Net::FTP]
RESERVED
+ - ruby2.5 <unfixed>
+ - ruby2.3 <unfixed>
+ - ruby2.1 <removed>
+ - ruby1.9.1 <removed>
+ - ruby1.8 <removed>
+ NOTE: https://www.ruby-lang.org/en/news/2017/12/14/net-ftp-command-injection-cve-2017-17405/
CVE-2017-17404
RESERVED
CVE-2017-17403
More information about the Secure-testing-commits
mailing list