[Secure-testing-commits] r48316 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jan 24 05:46:37 UTC 2017
Author: carnil
Date: 2017-01-24 05:46:36 +0000 (Tue, 24 Jan 2017)
New Revision: 48316
Modified:
data/CVE/list
Log:
Update CVE-2017-5545
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-24 05:36:46 UTC (rev 48315)
+++ data/CVE/list 2017-01-24 05:46:36 UTC (rev 48316)
@@ -45,7 +45,10 @@
CVE-2017-5553 (Cross-site scripting (XSS) vulnerability in ...)
TODO: check
CVE-2017-5545 (The main function in plistutil.c in libimobiledevice libplist through ...)
- TODO: check
+ - libplist <unfixed> (low)
+ [jessie] - libplist <no-dsa> (Minor issue)
+ NOTE: https://github.com/libimobiledevice/libplist/issues/87
+ NOTE: Fixed by: https://github.com/libimobiledevice/libplist/commit/7391a506352c009fe044dead7baad9e22dd279ee
CVE-2017-5544 (An issue was discovered on FiberHome Fengine S5800 switches V210R240. ...)
TODO: check
CVE-2017-5543 (includes/classes/ia.core.users.php in Subrion CMS 4.0.5 allows remote ...)
More information about the Secure-testing-commits
mailing list