[Secure-testing-commits] r51485 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 10 08:18:30 UTC 2017
Author: carnil
Date: 2017-05-10 08:18:26 +0000 (Wed, 10 May 2017)
New Revision: 51485
Modified:
data/CVE/list
Log:
Add reference for git issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-10 08:03:52 UTC (rev 51484)
+++ data/CVE/list 2017-05-10 08:18:26 UTC (rev 51485)
@@ -1115,6 +1115,7 @@
- git 1:2.11.0-3
NOTE: http://lkml.iu.edu/hypermail/linux/kernel/1705.1/01337.html
NOTE: http://lkml.iu.edu/hypermail/linux/kernel/1705.1/01346.html
+ NOTE: https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/
NOTE: https://git.kernel.org/pub/scm/git/git.git/commit/?id=3ec804490a265f4c418a321428c12f3f18b7eff5
CVE-2017-8385 (Craft CMS before 2.6.2976 does not prevent modification of the URL in a ...)
NOT-FOR-US: Craft CMS
More information about the Secure-testing-commits
mailing list