[Secure-testing-commits] r51496 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 10 14:25:15 UTC 2017
Author: carnil
Date: 2017-05-10 14:25:15 +0000 (Wed, 10 May 2017)
New Revision: 51496
Modified:
data/CVE/list
Log:
Add CVE-2017-8798/miniupnpc
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-10 14:10:27 UTC (rev 51495)
+++ data/CVE/list 2017-05-10 14:25:15 UTC (rev 51496)
@@ -229,8 +229,11 @@
RESERVED
CVE-2017-8799 (Untrusted input execution via igetwild in all iRODS versions before ...)
NOT-FOR-US: iRODS
-CVE-2017-8798
+CVE-2017-8798 [miniupnp integer signedness error]
RESERVED
+ - miniupnpc <unfixed>
+ NOTE: https://github.com/tintinweb/pub/blob/master/pocs/cve-2017-8798/Readme.md
+ NOTE: Fixed by: https://github.com/miniupnp/miniupnp/commit/f0f1f4b22d6a98536377a1bb07e7c20e4703d229
CVE-2017-8797
RESERVED
CVE-2017-8796 (An issue was discovered on Accellion FTA devices before FTA_9_12_180. ...)
More information about the Secure-testing-commits
mailing list