[Secure-testing-commits] r53731 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jul 21 08:24:58 UTC 2017
Author: carnil
Date: 2017-07-21 08:24:58 +0000 (Fri, 21 Jul 2017)
New Revision: 53731
Modified:
data/CVE/list
Log:
Add notes for cacti issues so it's clear the pending evaluation/rejection status
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-21 07:15:05 UTC (rev 53730)
+++ data/CVE/list 2017-07-21 08:24:58 UTC (rev 53731)
@@ -1017,6 +1017,9 @@
CVE-2017-1000031 (SQL injection vulnerability in graph_templates_inputs.php in Cacti ...)
- cacti <unfixed>
NOTE: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2016-007/?fid=7789
+ NOTE: Finding 1 looks like duplicate of of CVE-2014-4002. Finding 2.1 duplicate of
+ NOTE: CVE-2016-3172 and finding 2.2 as well duplicate of CVE-2014-4002.
+ TODO: wait for maintainers confirmation and ask for rejection to MITRE
CVE-2017-1000030 (Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is ...)
- glassfish <not-affected> (Vulnerable code not included, see bug #853998)
CVE-2017-1000029 (Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is ...)
More information about the Secure-testing-commits
mailing list