[Secure-testing-commits] r51868 - data/CVE

Sebastien Delafond seb at moszumanska.debian.org
Tue May 23 08:22:15 UTC 2017


Author: seb
Date: 2017-05-23 08:22:14 +0000 (Tue, 23 May 2017)
New Revision: 51868

Modified:
   data/CVE/list
Log:
Remove httrack entry: no privilege escalation, and no way to crash an
existing instance, so not a security problem at all.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-23 08:16:30 UTC (rev 51867)
+++ data/CVE/list	2017-05-23 08:22:14 UTC (rev 51868)
@@ -144,10 +144,6 @@
 	NOTE: https://sourceforge.net/p/jasypt/code/668/
 CVE-2017-9100 (login.cgi on D-Link DIR-600M devices with firmware 3.04 allows remote ...)
 	NOT-FOR-US: D-Link
-CVE-2017-XXXX [buffer overflow in output option commandline argument (VL-ID 2068)]
-	- httrack 3.49.2-1 (bug #863028)
-	[wheezy] - httrack <no-dsa> (Minor issue triggered only with long command line option)
-	NOTE: https://github.com/xroche/httrack/commit/d1dadb3f2ec3bb02f980974ca79ee66e5df34351
 CVE-2017-9099
 	RESERVED
 CVE-2017-9098 (ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use ...)




More information about the Secure-testing-commits mailing list