[Secure-testing-commits] r56616 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Oct 11 18:55:34 UTC 2017


Author: carnil
Date: 2017-10-11 18:55:33 +0000 (Wed, 11 Oct 2017)
New Revision: 56616

Modified:
   data/CVE/list
Log:
Update information for CVE-2017-12173/sssd, #877885

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-11 17:31:48 UTC (rev 56615)
+++ data/CVE/list	2017-10-11 18:55:33 UTC (rev 56616)
@@ -8671,7 +8671,11 @@
 CVE-2017-12173 [unsanitized input when searching in local cache database]
 	RESERVED
 	- sssd <unfixed> (bug #877885)
+	[jessie] - sssd <not-affected> (Vulnerable code introduced later)
+	[wheezy] - sssd <not-affected> (Vulnerable code introduced later)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1498173
+	NOTE: Fixed by: https://pagure.io/SSSD/sssd/c/1f2662c8f97c9c0fa250055d4b6750abfc6d0835
+	NOTE: Introduced by https://pagure.io/SSSD/sssd/c/7ecb5aea65cb1899f16e7a41bffa93d074defd4a (sssd-1_12_0)
 CVE-2017-12172
 	RESERVED
 CVE-2017-12171




More information about the Secure-testing-commits mailing list