[Secure-testing-commits] r52289 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Sun Jun 4 15:37:49 UTC 2017
Author: agx
Date: 2017-06-04 15:37:49 +0000 (Sun, 04 Jun 2017)
New Revision: 52289
Modified:
data/CVE/list
Log:
lts: triage rabbitmq-server
The admin ui is not enabled by default and if enabled only reachable
from localhost.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-04 15:24:02 UTC (rev 52288)
+++ data/CVE/list 2017-06-04 15:37:49 UTC (rev 52289)
@@ -13599,6 +13599,7 @@
- rabbitmq-server <unfixed> (low; bug #863586)
[stretch] - rabbitmq-server <no-dsa> (Minor issue)
[jessie] - rabbitmq-server <no-dsa> (Minor issue)
+ [wheezy] - rabbitmq-server <no-dsa> (Minor issue)
CVE-2017-4966 [authentication details are stored in browser-local storage without expiration]
RESERVED
- rabbitmq-server <unfixed> (low; bug #863586)
@@ -13612,6 +13613,7 @@
- rabbitmq-server <unfixed> (low; bug #863586)
[stretch] - rabbitmq-server <no-dsa> (Minor issue)
[jessie] - rabbitmq-server <no-dsa> (Minor issue)
+ [wheezy] - rabbitmq-server <no-dsa> (Minor issue)
CVE-2017-4964 (Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a ...)
NOT-FOR-US: Cloud Foundry
CVE-2017-4963
More information about the Secure-testing-commits
mailing list