[Secure-testing-commits] r52971 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 28 06:51:38 UTC 2017
Author: carnil
Date: 2017-06-28 06:51:38 +0000 (Wed, 28 Jun 2017)
New Revision: 52971
Modified:
data/CVE/list
Log:
Mark CVE-2017-9841 as not-affected in jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-28 05:04:50 UTC (rev 52970)
+++ data/CVE/list 2017-06-28 06:51:38 UTC (rev 52971)
@@ -318,6 +318,8 @@
RESERVED
CVE-2017-9841 (Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 ...)
- phpunit <unfixed>
+ [jessie] - phpunit <not-affected> (Issue introduced later; vulnerable code not present)
+ [wheezy] - phpunit <not-affected> (Issue introduced later; vulnerable code not present)
NOTE: https://github.com/sebastianbergmann/phpunit/pull/1956
NOTE: https://github.com/sebastianbergmann/phpunit/commit/284a69fb88a2d0845d23f42974a583d8f59bf5a5
CVE-2017-9840 (Dolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to upload ...)
More information about the Secure-testing-commits
mailing list