[Secure-testing-commits] r57619 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Nov 14 11:21:09 UTC 2017
Author: jmm
Date: 2017-11-14 11:21:08 +0000 (Tue, 14 Nov 2017)
New Revision: 57619
Modified:
data/CVE/list
Log:
tcpdump no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-14 10:08:47 UTC (rev 57618)
+++ data/CVE/list 2017-11-14 11:21:08 UTC (rev 57619)
@@ -11,7 +11,9 @@
CVE-2017-16809
RESERVED
CVE-2017-16808 (tcpdump 4.9.2 has a heap-based buffer over-read related to aoe_print in ...)
- - tcpdump <unfixed>
+ - tcpdump <unfixed> (low)
+ [stretch] - tcpdump <postponed> (Can be fixed along in a future update)
+ [jessie] - tcpdump <postponed> (Can be fixed along in a future update)
NOTE: https://github.com/the-tcpdump-group/tcpdump/issues/645
CVE-2017-16807 (A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, ...)
TODO: check
More information about the Secure-testing-commits
mailing list