[Secure-testing-commits] r50188 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Mar 30 05:46:08 UTC 2017
Author: carnil
Date: 2017-03-30 05:46:08 +0000 (Thu, 30 Mar 2017)
New Revision: 50188
Modified:
data/CVE/list
Log:
Update moodle entry, mark as unimportant with explanation in NOTEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-30 04:45:08 UTC (rev 50187)
+++ data/CVE/list 2017-03-30 05:46:08 UTC (rev 50188)
@@ -1,9 +1,11 @@
CVE-2017-7308
- linux 4.9.18-1
CVE-2017-7298 (In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add ...)
- - moodle <undetermined>
+ - moodle <unfixed> (unimportant)
NOTE: http://www.daimacn.com/post/12.html
- TODO: check, potentially only in Moodle 3.2; done: contacted moodle upstream
+ NOTE: https://tracker.moodle.org/browse/MDL-52038
+ NOTE: Not considered a security issue/bug upstream, disputed that it got a CVE
+ NOTE: assigned. Mark as unimportant as non-issue.
CVE-2017-7297 (Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users ...)
NOT-FOR-US: Rancher Labs rancher server
CVE-2017-7296
More information about the Secure-testing-commits
mailing list