[Secure-testing-commits] r52371 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 7 04:44:57 UTC 2017
Author: carnil
Date: 2017-06-07 04:44:57 +0000 (Wed, 07 Jun 2017)
New Revision: 52371
Modified:
data/CVE/list
Log:
Add two CVEs for kibana, itp'ed, #700337
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-07 04:44:47 UTC (rev 52370)
+++ data/CVE/list 2017-06-07 04:44:57 UTC (rev 52371)
@@ -2810,9 +2810,9 @@
CVE-2017-8441 (Elastic X-Pack Security versions prior to 5.4.1 and 5.3.3 did not ...)
NOT-FOR-US: Elastic X-Pack Security
CVE-2017-8440 (Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2017-8439 (Kibana version 5.4.0 was affected by a Cross Site Scripting (XSS) bug ...)
- TODO: check
+ - kibana <itp> (bug #700337)
CVE-2017-8438 (Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege ...)
NOT-FOR-US: Elastic X-Pack Security
CVE-2017-8437
More information about the Secure-testing-commits
mailing list