[Secure-testing-commits] r52614 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Fri Jun 16 10:37:35 UTC 2017
Author: apo
Date: 2017-06-16 10:37:35 +0000 (Fri, 16 Jun 2017)
New Revision: 52614
Modified:
data/CVE/list
Log:
CVE-2017-2666,CVE-2017-2670: Update status of undertow
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-16 09:10:13 UTC (rev 52613)
+++ data/CVE/list 2017-06-16 10:37:35 UTC (rev 52614)
@@ -20643,6 +20643,8 @@
CVE-2017-2670
RESERVED
- undertow <unfixed> (bug #864405)
+ NOTE: Fixed by https://github.com/undertow-io/undertow/commit/9bfe9fbbb595d51157b61693f072895f7dbadd1d
+ NOTE: https://issues.jboss.org/browse/UNDERTOW-1035
CVE-2017-2669 [auth: Do not double-expand key in passdb dict when authenticating]
RESERVED
- dovecot 1:2.2.27-3 (bug #860049)
@@ -20661,6 +20663,7 @@
CVE-2017-2666
RESERVED
- undertow <unfixed> (bug #864405)
+ NOTE: https://issues.jboss.org/browse/UNDERTOW-1101
CVE-2017-2665
RESERVED
NOT-FOR-US: Red Hat Storage / skyring
More information about the Secure-testing-commits
mailing list