[Secure-testing-commits] r53501 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Jul 14 21:51:03 UTC 2017


Author: jmm
Date: 2017-07-14 21:51:03 +0000 (Fri, 14 Jul 2017)
New Revision: 53501

Modified:
   data/CVE/list
Log:
new php-cas issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-14 21:35:49 UTC (rev 53500)
+++ data/CVE/list	2017-07-14 21:51:03 UTC (rev 53501)
@@ -481,7 +481,7 @@
 CVE-2017-1000072 (Creolabs Gravity version 1.0 is vulnerable to a Double Free in ...)
 	NOT-FOR-US: Creolabs Gravity
 CVE-2017-1000071 (Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass ...)
-	TODO: check
+	- php-cas <unfixed>
 CVE-2017-1000070 (The Bitly oauth2_proxy in version 2.1 and earlier was affected by an ...)
 	NOT-FOR-US: Bitly oauth2_proxy
 CVE-2017-1000069 (CSRF in Bitly oauth2_proxy 2.1 during authentication flow ...)




More information about the Secure-testing-commits mailing list