[Secure-testing-commits] r58655 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 17 19:43:19 UTC 2017
Author: carnil
Date: 2017-12-17 19:43:19 +0000 (Sun, 17 Dec 2017)
New Revision: 58655
Modified:
data/CVE/list
Log:
Wrap long note
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-17 19:43:07 UTC (rev 58654)
+++ data/CVE/list 2017-12-17 19:43:19 UTC (rev 58655)
@@ -4884,7 +4884,9 @@
- swi-prolog <unfixed>
[wheezy] - swi-prolog <no-dsa> (Minor Issue)
NOTE: https://sources.debian.org/src/swi-prolog/7.2.3+dfsg-1/library/www_browser.pl/?hl=68#L68
- NOTE: In wheezy it is technically possible to trigger an argument injection vulnerability however it is quoted in an unusual way which makes it highly unlikely that it going to be.
+ NOTE: In wheezy it is technically possible to trigger an argument injection
+ NOTE: vulnerability however it is quoted in an unusual way which makes it highly
+ NOTE: unlikely that it going to be.
CVE-2017-17523 (lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings ...)
- lilypond <unfixed> (bug #884136)
[jessie] - lilypond <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list