[Secure-testing-commits] r58693 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Dec 19 15:37:52 UTC 2017


Author: carnil
Date: 2017-12-19 15:37:51 +0000 (Tue, 19 Dec 2017)
New Revision: 58693

Modified:
   data/CVE/list
Log:
Mark CVE-2017-17518 as unimportant

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-19 12:11:41 UTC (rev 58692)
+++ data/CVE/list	2017-12-19 15:37:51 UTC (rev 58693)
@@ -5019,8 +5019,7 @@
 	- ocaml-batteries <unfixed> (unimportant)
 	NOTE: https://sources.debian.org/src/ocaml-batteries/2.6.0-1/src/batteriesConfig.mlp/?hl=23#L23
 CVE-2017-17518 (swt/motif/browser.c in White_dune (aka whitedune) 0.30.10 does not ...)
-	- whitedune <unfixed>
-	[wheezy] - whitedune <no-dsa> (Minor issue. Vulnerable code present but an attacker can not control the URL so it is impossible to trigger it)
+	- whitedune <unfixed> (unimportant)
 	NOTE: https://sources.debian.org/src/whitedune/0.30.10-2.1/src/swt/motif/browser.c/?hl=159#L214
 CVE-2017-17517 (libsylph/utils.c in Sylpheed through 3.6 does not validate strings ...)
 	- sylpheed <unfixed> (unimportant)




More information about the Secure-testing-commits mailing list