[Secure-testing-commits] r51724 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu May 18 15:45:55 UTC 2017
Author: carnil
Date: 2017-05-18 15:45:55 +0000 (Thu, 18 May 2017)
New Revision: 51724
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2017-8798
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-18 15:10:10 UTC (rev 51723)
+++ data/CVE/list 2017-05-18 15:45:55 UTC (rev 51724)
@@ -692,7 +692,7 @@
CVE-2017-8799 (Untrusted input execution via igetwild in all iRODS versions before ...)
NOT-FOR-US: iRODS
CVE-2017-8798 (Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through ...)
- - miniupnpc <unfixed> (bug #862273)
+ - miniupnpc 1.9.20140610-3 (bug #862273)
NOTE: https://github.com/tintinweb/pub/blob/master/pocs/cve-2017-8798/Readme.md
NOTE: Fixed by: https://github.com/miniupnp/miniupnp/commit/f0f1f4b22d6a98536377a1bb07e7c20e4703d229
CVE-2017-8797
More information about the Secure-testing-commits
mailing list