[Secure-testing-commits] r52036 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun May 28 20:55:26 UTC 2017
Author: jmm
Date: 2017-05-28 20:55:26 +0000 (Sun, 28 May 2017)
New Revision: 52036
Modified:
data/CVE/list
Log:
rabbitmq bug
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-28 20:47:11 UTC (rev 52035)
+++ data/CVE/list 2017-05-28 20:55:26 UTC (rev 52036)
@@ -12854,17 +12854,17 @@
RESERVED
CVE-2017-4967
RESERVED
- - rabbitmq-server <unfixed>
+ - rabbitmq-server <unfixed> (bug #863586)
CVE-2017-4966 [authentication details are stored in browser-local storage without expiration]
RESERVED
- - rabbitmq-server <unfixed>
+ - rabbitmq-server <unfixed> (bug #863586)
[jessie] - rabbitmq-server <not-affected> (Vulnerable code introduced later)
[wheezy] - rabbitmq-server <not-affected> (Vulnerable code introduced later)
NOTE: Fixed by: https://github.com/rabbitmq/rabbitmq-management/commit/2371633f99ad0d293899384f078872ff9e9f3e10 (rabbitmq_v3_6_9)
NOTE: Introduced by: https://github.com/rabbitmq/rabbitmq-management/commit/ced47b0bdca862a58e8f31833643e948655f8368 (rabbitmq_v3_4_0)
CVE-2017-4965
RESERVED
- - rabbitmq-server <unfixed>
+ - rabbitmq-server <unfixed> (bug #863586)
CVE-2017-4964 (Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a ...)
NOT-FOR-US: Cloud Foundry
CVE-2017-4963
More information about the Secure-testing-commits
mailing list