[Secure-testing-commits] r48779 - data/CVE
Sebastien Delafond
seb at moszumanska.debian.org
Wed Feb 8 19:45:52 UTC 2017
Author: seb
Date: 2017-02-08 19:45:52 +0000 (Wed, 08 Feb 2017)
New Revision: 48779
Modified:
data/CVE/list
Log:
Add link to upstream patch for XXE in openpyxl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-08 19:45:40 UTC (rev 48778)
+++ data/CVE/list 2017-02-08 19:45:52 UTC (rev 48779)
@@ -151,6 +151,7 @@
CVE-2017-XXXX [openpyxl XML External Entity (XXE) vulnerability]
- openpyxl <unfixed> (bug #854442)
NOTE: CVE request at http://www.openwall.com/lists/oss-security/2017/02/07/5
+ NOTE: https://bitbucket.org/openpyxl/openpyxl/commits/3b4905f428e1
CVE-2017-XXXX [gnome-keyring lives on after ssh session stops]
- gnome-keyring <unfixed> (low; bug #395572)
[jessie] - gnome-keyring <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list