[Secure-testing-commits] r49030 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Feb 17 20:17:38 UTC 2017
Author: carnil
Date: 2017-02-17 20:17:38 +0000 (Fri, 17 Feb 2017)
New Revision: 49030
Modified:
data/CVE/list
Log:
Two CVEs assigned for libapache2-mod-auth-openidc
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-17 19:32:35 UTC (rev 49029)
+++ data/CVE/list 2017-02-17 20:17:38 UTC (rev 49030)
@@ -537,10 +537,10 @@
- gnome-keyring <unfixed> (low; bug #395572)
[jessie] - gnome-keyring <no-dsa> (Minor issue)
[wheezy] - gnome-keyring <no-dsa> (Minor issue)
-CVE-2017-XXXX [information leak in error messages]
+CVE-2017-6059 [information leak in error messages]
- libapache2-mod-auth-openidc 2.1.5-1
NOTE: https://github.com/pingidentity/mod_auth_openidc/issues/212
-CVE-2017-XXXX [OIDCUnAuthAction pass does not scrub request headers]
+CVE-2017-6062 [OIDCUnAuthAction pass does not scrub request headers]
- libapache2-mod-auth-openidc 2.1.5-1
NOTE: https://github.com/pingidentity/mod_auth_openidc/issues/222
CVE-2017-XXXX [irssi memory leak]
More information about the Secure-testing-commits
mailing list