[Secure-testing-commits] r49447 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Mar 6 16:48:24 UTC 2017
Author: carnil
Date: 2017-03-06 16:48:24 +0000 (Mon, 06 Mar 2017)
New Revision: 49447
Modified:
data/CVE/list
Log:
Add CVE-2017-650{3,4}/qbittorrent
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-06 16:43:05 UTC (rev 49446)
+++ data/CVE/list 2017-03-06 16:48:24 UTC (rev 49447)
@@ -1,3 +1,13 @@
+CVE-2017-6504
+ - qbittorrent <unfixed>
+ NOTE: https://github.com/qbittorrent/qBittorrent/commit/6ca3e4f094da0a0017cb2d483ec1db6176bb0b16
+ NOTE: Fixed upstream in 3.3.11
+ TODO: find isolated change and update reference
+CVE-2017-6503
+ - qbittorrent <unfixed>
+ NOTE: https://github.com/qbittorrent/qBittorrent/commit/6ca3e4f094da0a0017cb2d483ec1db6176bb0b16
+ NOTE: Fixed upstream in 3.3.11
+ TODO: find isolated change and update reference
CVE-2017-6502
- imagemagick <unfixed> (unimportant; bug #856883)
NOTE: webp is disable under Debian, cf. https://bugs.debian.org/856883#14
More information about the Secure-testing-commits
mailing list