[Secure-testing-commits] r56538 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 9 15:16:34 UTC 2017
Author: carnil
Date: 2017-10-09 15:16:33 +0000 (Mon, 09 Oct 2017)
New Revision: 56538
Modified:
data/CVE/list
Log:
Update information for CVE-2017-15047/redis
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-09 11:57:11 UTC (rev 56537)
+++ data/CVE/list 2017-10-09 15:16:33 UTC (rev 56538)
@@ -286,7 +286,10 @@
RESERVED
CVE-2017-15047 (The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows ...)
- redis <unfixed>
+ [stretch] - redis <no-dsa> (Minor issue)
+ [jessie] - redis <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/antirez/redis/issues/4278
+ NOTE: Pull request: https://github.com/antirez/redis/pull/4365
CVE-2017-15046 (LAME 3.99.5 has a stack-based buffer overflow in unpack_read_samples ...)
- lame <unfixed>
NOTE: https://sourceforge.net/p/lame/bugs/479/
More information about the Secure-testing-commits
mailing list