[Secure-testing-commits] r53636 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Jul 18 22:02:18 UTC 2017
Author: jmm
Date: 2017-07-18 22:02:18 +0000 (Tue, 18 Jul 2017)
New Revision: 53636
Modified:
data/CVE/list
Log:
new rbenv issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-18 21:58:30 UTC (rev 53635)
+++ data/CVE/list 2017-07-18 22:02:18 UTC (rev 53636)
@@ -814,7 +814,7 @@
CVE-2017-1000048 (the web framework using ljharb's qs module older than v6.3.2, v6.2.3, ...)
NOT-FOR-US: ljharb
CVE-2017-1000047 (rbenv (all current versions) is vulnerable to Directory Traversal in ...)
- TODO: check
+ - rbenv <unfixed>
CVE-2017-1000046 (Mautic 2.6.1 and earlier fails to set flags on session cookies ...)
NOT-FOR-US: Mautic
CVE-2017-1000045 (Mautic SSO/OAuth2 plugins are vulnerable to CSRF of the state ...)
More information about the Secure-testing-commits
mailing list