[Secure-testing-commits] r53476 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 13 21:39:12 UTC 2017
Author: carnil
Date: 2017-07-13 21:39:12 +0000 (Thu, 13 Jul 2017)
New Revision: 53476
Modified:
data/CVE/list
Log:
Add fixing version for xmlsec1 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-13 21:33:23 UTC (rev 53475)
+++ data/CVE/list 2017-07-13 21:39:12 UTC (rev 53476)
@@ -451,7 +451,7 @@
CVE-2017-1000062 (kittoframework kitto 0.5.1 is vulnerable to directory traversal in the ...)
TODO: check
CVE-2017-1000061 (xmlsec 1.2.23 and before is vulnerable to XML External Entity ...)
- - xmlsec1 <unfixed>
+ - xmlsec1 1.2.24-1
NOTE: https://github.com/lsh123/xmlsec/issues/43
CVE-2017-1000060 (EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb ...)
TODO: check
More information about the Secure-testing-commits
mailing list