[Secure-testing-commits] r57658 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 15 11:46:13 UTC 2017
Author: carnil
Date: 2017-11-15 11:46:13 +0000 (Wed, 15 Nov 2017)
New Revision: 57658
Modified:
data/CVE/list
Log:
add bug number for varnish issue, #881808
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-15 11:39:49 UTC (rev 57657)
+++ data/CVE/list 2017-11-15 11:46:13 UTC (rev 57658)
@@ -23201,9 +23201,10 @@
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2017-November/000216.html
CVE-2017-8807 [Data leak - '-sfile' Stevedore transient objects]
RESERVED
- - varnish <unfixed>
+ - varnish <unfixed> (bug #881808)
[jessie] - varnish <not-affected> (Vulnerable code not present, issue introduced in 4.1.0)
NOTE: http://varnish-cache.org/security/VSV00002.html
+ NOTE: https://github.com/varnishcache/varnish-cache/pull/2429
NOTE: Fixed by: https://github.com/varnishcache/varnish-cache/commit/176f8a075a
CVE-2017-8806 (The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster ...)
{DSA-4029-1 DLA-1169-1}
More information about the Secure-testing-commits
mailing list