[Secure-testing-commits] r58924 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 26 07:41:10 UTC 2017
Author: carnil
Date: 2017-12-26 07:41:09 +0000 (Tue, 26 Dec 2017)
New Revision: 58924
Modified:
data/CVE/list
Log:
Mark dolibarr issues as no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-26 07:17:18 UTC (rev 58923)
+++ data/CVE/list 2017-12-26 07:41:09 UTC (rev 58924)
@@ -18,16 +18,24 @@
RESERVED
CVE-2017-17900 (SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM ...)
- dolibarr <unfixed>
+ [stretch] - dolibarr <no-dsa> (Minor issue)
+ [jessie] - dolibarr <no-dsa> (Minor issue)
NOTE: https://github.com/Dolibarr/dolibarr/commit/4a5988accbb770b74105baacd5a034689272128c
CVE-2017-17899 (SQL injection vulnerability in adherents/subscription/info.php in ...)
- dolibarr <unfixed>
+ [stretch] - dolibarr <no-dsa> (Minor issue)
+ [jessie] - dolibarr <no-dsa> (Minor issue)
NOTE: https://github.com/Dolibarr/dolibarr/commit/4a5988accbb770b74105baacd5a034689272128c
CVE-2017-17898 (Dolibarr ERP/CRM version 6.0.4 does not block direct requests to ...)
- dolibarr <unfixed>
+ [stretch] - dolibarr <no-dsa> (Minor issue)
+ [jessie] - dolibarr <no-dsa> (Minor issue)
NOTE: https://github.com/Dolibarr/dolibarr/commit/4a5988accbb770b74105baacd5a034689272128c
NOTE: https://github.com/Dolibarr/dolibarr/commit/6a62e139604dbbd5729e57df2433b37a5950c35c
CVE-2017-17897 (SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM ...)
- dolibarr <unfixed>
+ [stretch] - dolibarr <no-dsa> (Minor issue)
+ [jessie] - dolibarr <no-dsa> (Minor issue)
NOTE: https://github.com/Dolibarr/dolibarr/commit/4a5988accbb770b74105baacd5a034689272128c
CVE-2017-17896 (Readymade Job Site Script has XSS via the keyword parameter to the /job ...)
NOT-FOR-US: Readymade Job Site Script
More information about the Secure-testing-commits
mailing list