[Secure-testing-commits] r51388 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun May 7 19:58:59 UTC 2017
Author: apo
Date: 2017-05-07 19:58:59 +0000 (Sun, 07 May 2017)
New Revision: 51388
Modified:
data/CVE/list
Log:
CVE-2017-8295,wordpress: Add bug reference
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-07 19:47:17 UTC (rev 51387)
+++ data/CVE/list 2017-05-07 19:58:59 UTC (rev 51388)
@@ -1217,7 +1217,7 @@
NOTE: patch in BTS gives workaround to always prompt for password and do not save to database
NOTE: http://www.openwall.com/lists/oss-security/2017/04/25/9
CVE-2017-8295 (WordPress through 4.7.4 relies on the Host HTTP header for a ...)
- - wordpress <unfixed>
+ - wordpress <unfixed> (bug #862053)
NOTE: https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html
NOTE: http://blog.dewhurstsecurity.com/2017/05/04/exploitbox-wordpress-security-advisories.html
CVE-2017-8294 (libyara/re.c in the regex component in YARA 3.5.0 allows remote ...)
More information about the Secure-testing-commits
mailing list