[Secure-testing-commits] r57553 - data/CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sat Nov 11 18:04:31 UTC 2017
Author: opal
Date: 2017-11-11 18:04:31 +0000 (Sat, 11 Nov 2017)
New Revision: 57553
Modified:
data/CVE/list
Log:
Triage result.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-11 14:39:13 UTC (rev 57552)
+++ data/CVE/list 2017-11-11 18:04:31 UTC (rev 57553)
@@ -4402,7 +4402,10 @@
- postgresql-9.4 <removed>
- postgresql-9.1 <removed>
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
+ [wheezy] - postgresql-9.1 <not-affected> (Vulnerable code does not exist)
+ NOTE: https://www.postgresql.org/docs/current/static/release-9-5-10.html
CVE-2017-15097
+ NOTE: https://lists.debian.org/debian-security-announce/2017/msg00291.html
RESERVED
CVE-2017-15096 (A flaw was found in GlusterFS in versions prior to 3.10. A null ...)
- glusterfs 3.12.2-2 (bug #880017)
@@ -13076,6 +13079,7 @@
[jessie] - postgresql-9.4 9.4.15-0+deb8u1
- postgresql-9.1 <removed> (unimportant)
[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie only provides PL/Perl)
+ [wheezy] - postgresql-9.1 <not-affected> (Vulnerable code not installed)
NOTE: Issue in sample init-scirpt as provided by postgresql project, but not installed
CVE-2017-12171 [httpd: # character matches all IPs]
RESERVED
More information about the Secure-testing-commits
mailing list