[Secure-testing-commits] r57641 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 14 21:35:14 UTC 2017
Author: carnil
Date: 2017-11-14 21:35:14 +0000 (Tue, 14 Nov 2017)
New Revision: 57641
Modified:
data/CVE/list
Log:
Record cacti fixes in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-14 21:15:32 UTC (rev 57640)
+++ data/CVE/list 2017-11-14 21:35:14 UTC (rev 57641)
@@ -93,7 +93,7 @@
CVE-2017-16780 (The installer in MyBB before 1.8.13 allows remote attackers to execute ...)
NOT-FOR-US: MyBB
CVE-2017-16785 (Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php. ...)
- - cacti <unfixed>
+ - cacti 1.1.27+ds1-3
[stretch] - cacti <not-affected> (Vulnerable code does not exist)
[jessie] - cacti <not-affected> (Vulnerable code does not exist)
[wheezy] - cacti <not-affected> (Vulnerable code does not exist)
@@ -422,21 +422,21 @@
NOTE: https://github.com/derickr/timelib/commit/aa9156006e88565e1f1a5f7cc088b18322d57536
NOTE: https://github.com/php/php-src/commit/5c0455bf2c8cd3c25401407f158e820aa3b239e1
CVE-2017-16661 (Cacti 1.1.27 allows remote authenticated administrators to read ...)
- - cacti <unfixed>
+ - cacti 1.1.27+ds1-3
[stretch] - cacti <not-affected> (Vulnerable code does not exist)
[jessie] - cacti <not-affected> (Vulnerable code does not exist)
[wheezy] - cacti <not-affected> (Vulnerable code does not exist)
NOTE: https://github.com/Cacti/cacti/issues/1066
NOTE: affected code was introduced in the 1.x release
CVE-2017-16660 (Cacti 1.1.27 allows remote authenticated administrators to conduct ...)
- - cacti <unfixed>
+ - cacti 1.1.27+ds1-3
[stretch] - cacti <not-affected> (Vulnerable code does not exist)
[jessie] - cacti <not-affected> (Vulnerable code does not exist)
[wheezy] - cacti <not-affected> (Vulnerable code does not exist)
NOTE: https://github.com/Cacti/cacti/issues/1066
NOTE: affected code was introduced in the 1.x release
CVE-2017-16641 (lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators ...)
- - cacti <unfixed> (bug #881110)
+ - cacti 1.1.27+ds1-3 (bug #881110)
NOTE: https://github.com/Cacti/cacti/issues/1057
NOTE: https://github.com/Cacti/cacti/commit/e8088bb6593e6a49d000c342d17402f01db8740e
CVE-2017-16640
More information about the Secure-testing-commits
mailing list