[Secure-testing-commits] r48238 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 20 21:16:10 UTC 2017
Author: carnil
Date: 2017-01-20 21:16:10 +0000 (Fri, 20 Jan 2017)
New Revision: 48238
Modified:
data/CVE/list
Log:
Add bug reference for cgiemail, #852031
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-20 20:39:46 UTC (rev 48237)
+++ data/CVE/list 2017-01-20 21:16:10 UTC (rev 48238)
@@ -1,3 +1,15 @@
+CVE-2017-XXXX [Reflected XSS vulnerability]
+ - cgiemail <unfixed> (bug #852031)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/20/6
+CVE-2017-XXXX [SEC-215 HTTP header injection]
+ - cgiemail <unfixed> (bug #852031)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/20/6
+CVE-2017-XXXX [SEC-214 Open redirect]
+ - cgiemail <unfixed> (bug #852031)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/20/6
+CVE-2017-XXXX [SEC-212 Format string injection]
+ - cgiemail <unfixed> (bug #852031)
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2017/01/20/6
CVE-2016-10150 [kvm: use-after-free issue while creating devices]
- linux 4.8.15-1
[jessie] - linux <not-affected> (Vulnerable code introduced later)
More information about the Secure-testing-commits
mailing list