[Secure-testing-commits] r54048 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 29 06:06:01 UTC 2017
Author: carnil
Date: 2017-07-29 06:06:01 +0000 (Sat, 29 Jul 2017)
New Revision: 54048
Modified:
data/CVE/list
Log:
Add more notes for CVE-2017-1000031
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-29 05:57:58 UTC (rev 54047)
+++ data/CVE/list 2017-07-29 06:06:01 UTC (rev 54048)
@@ -1682,6 +1682,9 @@
NOTE: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2016-007/?fid=7789
NOTE: Finding 1 looks like duplicate of of CVE-2014-4002. Finding 2.1 duplicate of
NOTE: CVE-2016-3172 and finding 2.2 as well duplicate of CVE-2014-4002.
+ NOTE: According to https://github.com/Cacti/cacti/issues/866#issuecomment-316865448
+ NOTE: the first issue was fixed by https://github.com/Cacti/cacti/commit/be800c9e552d2929106b576922e9693c83b4bd46
+ NOTE: whereas the secod issue was fixed by https://github.com/Cacti/cacti/commit/4e4dd6784adfc07b6011da999809d86a06f0f4e5
TODO: asked MITRE to REJECT entry, with above reasoning, wait for update
CVE-2017-1000030 (Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is ...)
- glassfish <not-affected> (Vulnerable code not included, see bug #853998)
More information about the Secure-testing-commits
mailing list