[Secure-testing-commits] r56777 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Oct 17 09:13:04 UTC 2017
Author: carnil
Date: 2017-10-17 09:13:04 +0000 (Tue, 17 Oct 2017)
New Revision: 56777
Modified:
data/CVE/list
Log:
Add new radare2 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-17 09:10:17 UTC (rev 56776)
+++ data/CVE/list 2017-10-17 09:13:04 UTC (rev 56777)
@@ -255,7 +255,9 @@
CVE-2017-15386
RESERVED
CVE-2017-15385 (The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c ...)
- TODO: check
+ - radare2 <unfixed>
+ NOTE: https://github.com/radare/radare2/issues/8685
+ NOTE: https://github.com/radare/radare2/commit/21a6f570ba33fa9f52f1bba87f07acc4e8c178f4
CVE-2017-15384 (rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action. ...)
NOT-FOR-US: Rate Me
CVE-2017-15383 (Nero 7.10.1.0 has an unquoted BINARY_PATH_NAME for NBService, ...)
More information about the Secure-testing-commits
mailing list