[Secure-testing-commits] r52345 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jun 6 05:11:23 UTC 2017
Author: carnil
Date: 2017-06-06 05:11:23 +0000 (Tue, 06 Jun 2017)
New Revision: 52345
Modified:
data/CVE/list
Log:
Add CVE-2017-9435/dolibarr
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-06 04:42:32 UTC (rev 52344)
+++ data/CVE/list 2017-06-06 05:11:23 UTC (rev 52345)
@@ -27,7 +27,8 @@
CVE-2017-9436 (TeamPass before 2.1.27.4 is vulnerable to a SQL injection in ...)
TODO: check
CVE-2017-9435 (Dolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in ...)
- TODO: check
+ - dolibarr <unfixed>
+ NOTE: https://github.com/Dolibarr/dolibarr/commit/70636cc59ffa1ffbc0ce3dba315d7d9b837aad04
CVE-2017-9434 (Crypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read ...)
- libcrypto++ 5.6.4-7 (bug #864214)
NOTE: https://github.com/weidai11/cryptopp/issues/414
More information about the Secure-testing-commits
mailing list