[Secure-testing-commits] r57705 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 17 09:26:56 UTC 2017
Author: jmm
Date: 2017-11-17 09:26:56 +0000 (Fri, 17 Nov 2017)
New Revision: 57705
Modified:
data/CVE/list
Log:
new python issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-17 09:26:09 UTC (rev 57704)
+++ data/CVE/list 2017-11-17 09:26:56 UTC (rev 57705)
@@ -108,7 +108,9 @@
CVE-2017-1000160 (EllisLab ExpressionEngine 3.4.2 is vulnerable to cross-site scripting ...)
NOT-FOR-US: EllisLab ExpressionEngine
CVE-2017-1000158 (CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow ...)
- TODO: check
+ - python2.7 <unfixed>
+ TODO: check other versions
+ NOTE: https://bugs.python.org/issue30657
CVE-2017-1000129 (Serendipity 2.0.3 is vulnerable to a SQL injection in the blog ...)
- serendipity <removed>
CVE-2017-1000125 (Codiad(full version) is vulnerable to write anything to configure file ...)
More information about the Secure-testing-commits
mailing list