[Secure-testing-commits] r57583 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Nov 12 20:43:56 UTC 2017
Author: apo
Date: 2017-11-12 20:43:55 +0000 (Sun, 12 Nov 2017)
New Revision: 57583
Modified:
data/CVE/list
Log:
CVE-2017-14990,wordpress: Not fixed in Wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-12 20:41:09 UTC (rev 57582)
+++ data/CVE/list 2017-11-12 20:43:55 UTC (rev 57583)
@@ -4864,9 +4864,10 @@
CVE-2017-14758 (OpenText Document Sciences xPression (formerly EMC Document Sciences ...)
NOT-FOR-US: EMC
CVE-2017-14990 (WordPress 4.8.2 stores cleartext wp_signups.activation_key values (but ...)
- {DSA-3997-1 DLA-1151-1}
+ {DSA-3997-1}
- wordpress 4.8.2+dfsg-2 (bug #877629)
NOTE: https://core.trac.wordpress.org/ticket/38474
+ NOTE: Wordpress in Wheezy requires a database upgrade and backports of new functions
CVE-2017-14989 (A use-after-free in RenderFreetype in MagickCore/annotate.c in ...)
{DLA-1131-1}
- imagemagick <unfixed> (bug #878562)
More information about the Secure-testing-commits
mailing list