[Secure-testing-commits] r58598 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 15 09:16:58 UTC 2017
Author: carnil
Date: 2017-12-15 09:16:58 +0000 (Fri, 15 Dec 2017)
New Revision: 58598
Modified:
data/CVE/list
Log:
Add CVE-2017-16355
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-15 09:10:17 UTC (rev 58597)
+++ data/CVE/list 2017-12-15 09:16:58 UTC (rev 58598)
@@ -8486,7 +8486,11 @@
CVE-2017-16356
RESERVED
CVE-2017-16355 (In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 (fixed ...)
- TODO: check
+ - passenger <unfixed>
+ - ruby-passenger <removed>
+ NOTE: https://blog.phusion.nl/2017/10/13/passenger-security-advisory-5-1-11/
+ NOTE: https://github.com/phusion/passenger/commit/4043718264095cde6623c2cbe8c644541036d7bf
+ TODO: check, possibly a duplicate of CVE-2017-1000384, clarification with MITRE pending
CVE-2017-16354
RESERVED
CVE-2017-16353 (GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure ...)
More information about the Secure-testing-commits
mailing list