[Secure-testing-commits] r51880 - data/CVE
Sebastien Delafond
seb at moszumanska.debian.org
Tue May 23 11:50:30 UTC 2017
Author: seb
Date: 2017-05-23 11:50:29 +0000 (Tue, 23 May 2017)
New Revision: 51880
Modified:
data/CVE/list
Log:
Mark CVE-2017-9066 (wordpress) as not affecting versions < 4.6
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-23 10:22:21 UTC (rev 51879)
+++ data/CVE/list 2017-05-23 11:50:29 UTC (rev 51880)
@@ -477,6 +477,7 @@
NOT-FOR-US: HooHoo Trip Mate
CVE-2017-9066 (In WordPress before 4.7.5, there is insufficient redirect validation in ...)
- wordpress 4.7.5+dfsg-1 (bug #862816)
+ [jessie] - wordpress <not-affected> (Vulnerable code not present, Request library introduced in 4.6)
NOTE: https://wordpress.org/news/2017/05/wordpress-4-7-5/
NOTE: https://github.com/WordPress/WordPress/commit/76d77e927bb4d0f87c7262a50e28d84e01fd2b11
CVE-2017-9065 (In WordPress before 4.7.5, there is a lack of capability checks for ...)
More information about the Secure-testing-commits
mailing list