[Secure-testing-commits] r57874 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 20 21:51:44 UTC 2017
Author: carnil
Date: 2017-11-20 21:51:44 +0000 (Mon, 20 Nov 2017)
New Revision: 57874
Modified:
data/CVE/list
Log:
Add tt-rss issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-20 21:51:33 UTC (rev 57873)
+++ data/CVE/list 2017-11-20 21:51:44 UTC (rev 57874)
@@ -33,7 +33,9 @@
CVE-2017-16897
RESERVED
CVE-2017-16896 (A SQL injection in classes/handler/public.php in the forgotpass ...)
- TODO: check
+ - tt-rss <unfixed>
+ NOTE: https://discourse.tt-rss.org/t/sql-injection-in-forgotpass-fixed/669
+ NOTE: https://git.tt-rss.org/git/tt-rss/commit/2352c320c2ed34ec7df1ad22f0c55a1b26489815
CVE-2017-16895
RESERVED
CVE-2017-16894 (In Laravel framework through 5.5.21, remote attackers can obtain ...)
More information about the Secure-testing-commits
mailing list