[Secure-testing-commits] r52888 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jun 25 05:39:39 UTC 2017


Author: carnil
Date: 2017-06-25 05:39:39 +0000 (Sun, 25 Jun 2017)
New Revision: 52888

Modified:
   data/CVE/list
Log:
Add CVE-2017-9847

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-25 05:39:28 UTC (rev 52887)
+++ data/CVE/list	2017-06-25 05:39:39 UTC (rev 52888)
@@ -1,7 +1,9 @@
 CVE-2017-9848 (SQL injection vulnerability in C_InfoService.asmx in WebServices in ...)
 	NOT-FOR-US: Easysite
 CVE-2017-9847 (The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote ...)
-	TODO: check
+	- libtorrent-rasterbar <unfixed>
+	NOTE: https://github.com/arvidn/libtorrent/issues/2099
+	NOTE: Fixed by: https://github.com/ssiloti/libtorrent/commit/6fcd6f84f8d9509a8bc905b6eb03c7a22170c65f
 CVE-2017-9846 (Winmail Server 6.1 allows remote code execution by authenticated users ...)
 	NOT-FOR-US: Winmail Server
 CVE-2017-9845




More information about the Secure-testing-commits mailing list