[Secure-testing-commits] r56391 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 4 04:20:17 UTC 2017
Author: carnil
Date: 2017-10-04 04:20:16 +0000 (Wed, 04 Oct 2017)
New Revision: 56391
Modified:
data/CVE/list
Log:
Update CVE-2017-14941: jasperreports exists
Thanks: tyhicks (via IRC)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-03 22:10:45 UTC (rev 56390)
+++ data/CVE/list 2017-10-04 04:20:16 UTC (rev 56391)
@@ -177,7 +177,8 @@
CVE-2017-14942 (Intelbras WRN 150 devices allow remote attackers to read the ...)
NOT-FOR-US: Intelbras WRN 150 devices
CVE-2017-14941 (Jaspersoft JasperReports 4.7 suffers from a saved credential disclosure ...)
- NOT-FOR-US: JasperReports
+ - jasperreports <unfixed>
+ NOTE: https://github.com/binary1985/VulnerabilityDisclosure/blob/master/JasperSoft%20JasperReports%20-%204.7%20-%20CVE-2017-14941
CVE-2017-14940 (scan_unit_for_symbols in dwarf2.c in the Binary File Descriptor (BFD) ...)
- binutils <unfixed>
[stretch] - binutils <ignored> (Minor issue)
More information about the Secure-testing-commits
mailing list