[Secure-testing-commits] r52971 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jun 28 06:51:38 UTC 2017


Author: carnil
Date: 2017-06-28 06:51:38 +0000 (Wed, 28 Jun 2017)
New Revision: 52971

Modified:
   data/CVE/list
Log:
Mark CVE-2017-9841 as not-affected in jessie

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-28 05:04:50 UTC (rev 52970)
+++ data/CVE/list	2017-06-28 06:51:38 UTC (rev 52971)
@@ -318,6 +318,8 @@
 	RESERVED
 CVE-2017-9841 (Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 ...)
 	- phpunit <unfixed>
+	[jessie] - phpunit <not-affected> (Issue introduced later; vulnerable code not present)
+	[wheezy] - phpunit <not-affected> (Issue introduced later; vulnerable code not present)
 	NOTE: https://github.com/sebastianbergmann/phpunit/pull/1956
 	NOTE: https://github.com/sebastianbergmann/phpunit/commit/284a69fb88a2d0845d23f42974a583d8f59bf5a5
 CVE-2017-9840 (Dolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to upload ...)




More information about the Secure-testing-commits mailing list