[Secure-testing-commits] r53501 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jul 14 21:51:03 UTC 2017
Author: jmm
Date: 2017-07-14 21:51:03 +0000 (Fri, 14 Jul 2017)
New Revision: 53501
Modified:
data/CVE/list
Log:
new php-cas issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-14 21:35:49 UTC (rev 53500)
+++ data/CVE/list 2017-07-14 21:51:03 UTC (rev 53501)
@@ -481,7 +481,7 @@
CVE-2017-1000072 (Creolabs Gravity version 1.0 is vulnerable to a Double Free in ...)
NOT-FOR-US: Creolabs Gravity
CVE-2017-1000071 (Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass ...)
- TODO: check
+ - php-cas <unfixed>
CVE-2017-1000070 (The Bitly oauth2_proxy in version 2.1 and earlier was affected by an ...)
NOT-FOR-US: Bitly oauth2_proxy
CVE-2017-1000069 (CSRF in Bitly oauth2_proxy 2.1 during authentication flow ...)
More information about the Secure-testing-commits
mailing list