[Secure-testing-commits] r56726 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 15 18:29:31 UTC 2017
Author: carnil
Date: 2017-10-15 18:29:31 +0000 (Sun, 15 Oct 2017)
New Revision: 56726
Modified:
data/CVE/list
Log:
Add bug reference for sqlite3 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-15 18:27:25 UTC (rev 56725)
+++ data/CVE/list 2017-10-15 18:29:31 UTC (rev 56726)
@@ -174,7 +174,7 @@
CVE-2017-15287 (There is XSS in the BouquetEditor WebPlugin for Dream Multimedia ...)
NOT-FOR-US: BouquetEditor WebPlugin
CVE-2017-15286 (SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in ...)
- - sqlite3 <unfixed> (low)
+ - sqlite3 <unfixed> (low; bug #878680)
NOTE: https://github.com/Ha0Team/crash-of-sqlite3/blob/master/poc.md
NOTE: https://www.sqlite.org/src/info/5d0ceb8dcdef92cd
CVE-2017-15285 (X-Cart 5.2.23, 5.3.1.9, 5.3.2.13, and 5.3.3 is vulnerable to Remote ...)
More information about the Secure-testing-commits
mailing list