[Secure-testing-commits] r58709 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 20 05:20:55 UTC 2017
Author: carnil
Date: 2017-12-20 05:20:55 +0000 (Wed, 20 Dec 2017)
New Revision: 58709
Modified:
data/CVE/list
Log:
Move fixed version to expeirmental tagged entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-19 23:11:16 UTC (rev 58708)
+++ data/CVE/list 2017-12-20 05:20:55 UTC (rev 58709)
@@ -4636,7 +4636,8 @@
CVE-2017-17671 (vBulletin through 5.3.x on Windows allows remote PHP code execution ...)
TODO: check
CVE-2017-17670 (In VideoLAN VLC media player through 2.2.8, there is a type conversion ...)
- - vlc 3.0.0~rc1-1
+ [experimental] - vlc 3.0.0~rc1-1
+ - vlc <unfixed>
[wheezy] - vlc <end-of-life> (Not supported wheezy LTS)
NOTE: http://www.openwall.com/lists/oss-security/2017/12/15/1
NOTE: POC: https://gist.github.com/dyntopia/194d912287656f66dd502158b0cd2e68
More information about the Secure-testing-commits
mailing list