[Secure-testing-commits] r53498 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jul 14 21:30:22 UTC 2017
Author: jmm
Date: 2017-07-14 21:30:22 +0000 (Fri, 14 Jul 2017)
New Revision: 53498
Modified:
data/CVE/list
Log:
new glpi issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-14 21:10:16 UTC (rev 53497)
+++ data/CVE/list 2017-07-14 21:30:22 UTC (rev 53498)
@@ -9,9 +9,10 @@
CVE-2017-11330
RESERVED
CVE-2017-11329 (GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.php ...)
- TODO: check
+ - glpi <removed> (unimportant)
+ NOTE: Only supported behind an authenticated HTTP zone
CVE-2016-10398 (Android 6.0 has an authentication bypass for attackers with root and ...)
- TODO: check
+ NOT-FOR-US: Android
CVE-2017-11328 (Heap buffer overflow in the yr_object_array_set_item() function in ...)
TODO: check
CVE-2017-11327
More information about the Secure-testing-commits
mailing list